[BBLISA] Reusing Passwords on Different Sites Should be OK

Edward Ned Harvey (bblisa4) bblisa4 at nedharvey.com
Fri Sep 18 12:23:02 EDT 2015


> From: Ben Eisenbraun [mailto:bene at klatsch.org]
> 
> On Fri, Sep 18, 2015 at 04:00:17PM +0000, Edward Ned Harvey (bblisa4)
> wrote:
> > Any information you care to protect with HTTPS against random people
> > maintaining the routers of the Internet, you probably also care to
> > protect against random developers and sysadmins maintaining the
> > networks and servers at the remote end of the HTTPS connection.
> 
> I think you're off message here, since the sysadmins and devs at the
> remote end already have access to my data. It's only the password that
> you're protecting from them, so that I can presumably re-use it
> somewhere else.

What we're doing allows authentication *and* encryption to take place, without exposing passwords or encryption keys.

Did I mention that Concept Blossom's business is encrypted file sync & sharing? This is our main differentiator and our main competitive advantage. Unlike Dropbox, Google Drive, etc, we never have access to any passwords or encryption keys.



More information about the bblisa mailing list