Passwordless authentication: Secure, simple, and fast to deploy

added by JavaScript Kicks
10/15/2014 4:37:50 PM


We’ve seen quite a bit of great ideas recently and I got particularly excited by one very straightforward and low-tech solution: one-time passwords. They are fast to implement, have a small attack surface, and require neither QR codes nor JavaScript. Whenever a user wants to login or has her session invalidated, she receives a short-lived one-time link with a token via email or text message.