[Authentication] cookie-handling in password storage?
Mark Peter Wege
m.wege at web.de
Tue Aug 18 14:55:47 PDT 2009
Hi,
I have heard about the common effort of Gnomies and KDE people for a common
password storage. I am just a normal user and wanted to make a suggestion. I
do not know if it really fits from a technical standpoint. I tried to
understand what you write in your specification draft, but did not really
understand it all. It sound a bit like, my suggestion would not fit to your
attempts, but I thought it is worth a try.
My suggestion is to add cookie handling to the jobs for the password storage.
I know that cookies are not passwords, but they affect security and privacy in
a similar way as passwords and it would be really good to have a common
solution for that too.
- Cookies are often used for authentication; In that sense it would be really
useful to look them away in a secure framework too.
- The rules for Cookie handling (accepting, denying cookies of a page and for
how long) have something to do with the users privacy and it would make sense
to have a common approach to it.
Hope you do not mind, that I joined, even though I do not have a technical
background.
Greetings, Mark
More information about the Authentication
mailing list