Tekromancer on Nostr: npub14p5cx…0rpym “According to NIST SP 800-63B, section 5.1.1.2, verifiers SHOULD ...
npub14p5cxxjl7p0zcxnl93m3zqvfvwu7zvs63wvr9vpuyaf00ww3tnqs80rpym (npub14p5…rpym) “According to NIST SP 800-63B, section 5.1.1.2, verifiers SHOULD NOT require memorized secrets to be changed arbitrarily (e.g., periodically). However, verifiers SHALL force a change if there is evidence of compromise of the authenticator.”
Not even joking: this came up so frequently in discussion that I have the reference memorized. See https://pages.nist.gov/800-63-3/sp800-63b.html#memsecretver
Not even joking: this came up so frequently in discussion that I have the reference memorized. See https://pages.nist.gov/800-63-3/sp800-63b.html#memsecretver