On 22-Mar-06, at 12:47 PM, Nicolas Williams wrote:
So, is it safe to say that some of the use cases posted by Robert
amount
to saying that
- users shouldn't have more than one physical
(smartcard/token/whatever) or logical (username/password)
credential
I don't think you can mandate 'just one', but I think you can mandate
choice. Users should have as few or as many as they feel they need.
As a real world example think of credit cards. You could have one
but you probably have a back-up or two.
John
_______________________________________________
dix mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dix
