Network Security: Detailed info on Re: User verification questions

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Web-App-Sec

[Top] [All Lists]

Re: User verification questions

from [Mark Jeftovic] Network Security

[Permanent Link]

Subject:	Re: User verification questions
Date:	Tue, 11 Oct 2005 12:00:02 -0400

Andrew van der Stock wrote:

b) if it's to recover access to an account, even e-mail or SMS resets are stronger than this - they are almost a "something you have, something you know". If you value your accounts, nothing beats face to face contact. Evidence of identity is essential for trust in the account.

So what do you do if the problem is a lost password coupled with all available email addresses, phone numbers and postal addresses being stale or defunct? Lets say for an account with an ASP based in North America and a user in New Zealand?

-mark

--
Mark Jeftovic <mark@easydns.com>
easyDNS Technologies Inc.
ph: +1-(416)-535-8672 ext 225
fx: +1-(866)-273-2892

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
User verification questions, Derick Anderson Re: User verification questions, Andrew van der Stock Re: User verification questions, Mark Jeftovic <= Re: User verification questions, Yousef Syed Re: User verification questions, John Manko RE: User verification questions, Derick Anderson RE: User verification questions, Auri Rahimzadeh RE: User verification questions, Auri Rahimzadeh RE: User verification questions, Derick Anderson Re: User verification questions, bryan allott RE: User verification questions, Auri Rahimzadeh RE: User verification questions, Derick Anderson Re: User verification questions, Gary Gwin

Previous by Date:	RE: User verification questions, Derick Anderson
Next by Date:	Re: Notes from CISSP class with Dr. Eric Cole, dreamwvr
Previous by Thread:	Re: User verification questions, Andrew van der Stock
Next by Thread:	Re: User verification questions, Yousef Syed
Indexes:	[Date] [Thread] [Top] [All Lists]