challenge response authentication question

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

User avatar
Mordred
DevNet Resident
Posts: 1579
Joined: Sun Sep 03, 2006 5:19 am
Location: Sofia, Bulgaria

Re: challenge response authentication question

Post by Mordred »

timWebUK wrote:I would never disagree with your expertise :wink:
No, you should, if I'm wrong :) "Expertise" means nothing more than an evaluation of whether one is right more often than other people. That doesn't mean that the "expert" can't be wrong!

(Of course I'm only human and would not like being proved wrong, but I'm also a scientist, which means I try to override my ego and accept the truth. The best thing about "hard" science (such as security) is that one can be objectively proved wrong, there's little room for 'let's agree to disagree', etc ;) )
André D
Forum Commoner
Posts: 55
Joined: Thu Aug 28, 2008 7:03 pm

Re: challenge response authentication question

Post by André D »

timWebUK wrote:that's the problem with forums - can't always get a grasp on what someone means!
A little off the thread topic, but that reminds me of a paper: Egocentrism Over E-Mail: Can We Communicate as Well as We Think?. Basically, they studied electronic communication and figured out that 80-90% of the time, people think they understand the tone and intent when reading a message, but in reality they are only correct about half the time. Interesting.
Post Reply