Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
wahnfrieden
on June 22, 2022
|
parent
|
context
|
favorite
| on:
How to Share a Secret [pdf] (1979)
you do this by securing the 2fa device for the account in a bank safe that offers 2+ person rule for access
hn_throwaway_99
on June 22, 2022
|
next
[–]
Understood, I was just hoping that cloud vendors (or associated tools) would implement the "2+ person rule for access" directly within their interfaces.
Keirmot
on June 22, 2022
|
prev
[–]
Honest question: wouldn’t one person knowing the password and the other owning the 2FA device also achieve the same result?
wahnfrieden
on June 22, 2022
|
parent
[–]
yes you can also store the 2fa on-prem in a safe that the person with PW access does not have access to. different tradeoffs/risks involved
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
