Recent content by Dave

  1. Dave

    FYI Paper on the comparison of SQRL and FIDO2, comments appreciated!

    Presumably you have mentioned this to @Steve.
  2. Dave

    Closed Please test a new SQRL-enabled site. https://sarah.gives/login

    Worked fine! Logged in on a desktop using both the GRC version and scanning the QR code with the Android app. The only hiccup is that, when I choose "Logout", the log back in options do not include SQRL.
  3. Dave

    Potential new SQRL feature

    Presumably, you have read the SQRL ESSENTIALS forum. For a real "deep dive" there is always SQRL Explained.
  4. Dave

    Potential new SQRL feature

    As expected/hoped, SQRL never sends anything of value, ever. The SQRL user is identified by their public key (public, by definition) and the proof of identity challenge is simply a server-generated nonce that the client is asked to sign using the corresponding private key and return the signed...
  5. Dave

    Chemo Brain

    Click on your profile picture in the upper right corner and select "Connected accounts".
  6. Dave

    Can't disassociate

    Good luck getting that change. I don't know about Rasmus, but @Steve has definitely moved on.
  7. Dave

    Multiple password confusion

    Personally, I use the same password on multiple devices. Though it has been mentioned that someone might factor in the relative difficulty of entering a complex password on a mobile device versus that of doing so on a system with a proper keyboard and select platform-relative passwords. Also...
  8. Dave

    Can't disassociate

    Or you could just FALL on your Katana and ask @Steve to help. ;-)
  9. Dave

    Can't disassociate

    Interesting, thanks! Though I was not offering an opinion on how it SHOULD work (I can see both sides of the argument), I was merely refreshing my/our memory on how it was designed. So, it "works as designed". I believe this particular question was heavily debated over the last few years...
  10. Dave

    Can't disassociate

    I had to check to be sure... https://www.grc.com/sqrl/storage.htm says: So, if that HAD been invoked, you would not even be able to log in at all using just the user id and password.
  11. Dave

    Can't disassociate

    The only thing you did "wrong" was to lose the SQRL identity. SQRL is FAR more secure than user id and password. By design, the ONLY way to remove the SQRL identity is with the SQRL identity. If all it took to disassociate the SQRL identity from the account was the user id and password, then...
  12. Dave

    FYI Support SQRL for iOS development - Business Model

    See New App coming to TestFlight shortly
  13. Dave

    SQRL server base and sample implementation for Java not working with Windows Client

    FYI: I just tried 4 times with the GRC client without success.
  14. Dave

    Bare Metal SQRL

    Love it!