To implement this in reality a little protocol could be
established/implemented.

It could work as follows:

All websites that require a universal login could implement the following
"keywords"/"html"/"xml"-like text:

<UniversalLoginInformation>
<UniversalPasswordExtraText>GreatCompany</UniversalPasswordExtraText>
<UniversalPasswordHashMethod>Tiger192</UniversalPasswordHashMethod>
</UniversalLoginInformation>

This text would be embedded into the website/html.

Then when the user wants to login... this information is used by the browser
to perform the hashing of the "universal password" of the user.

So first the browser asks the user for his/her "universal password" which in
my case was my fictional example:

"MyGreatPassword".

The browser then checks the "Universal Password Hash Method" to see if
"Tiger192" is still considered a safe and secure hash method.

If so then the browser simply performs the hash:

TigerHash( "MyGreatPassword" + "GreatCompany" ) = UniversalLoginHash

(without the "")

The UniversalLoginHash is what is sent back to the
webserver/company/goverment which they can/have store/stored in their
databases... to compare against...

If required this "sending back" could again be done via html/xml-like text:

<UniversalLogin>
<UniversalLoginUsername>Skybuck</UniversalLoginUsername>
<UniversalLoginHash>hfhertyertyer45678901234</UniversalLoginHash>
<UniversalLogin>

Optionally the UniversalLoginInformation could be sent back as well for
extra verifications or to support multi-service logins...

So the company or service can check to what service the user wanted to login
to....

If the "universal login hash" matches the one stored in the database then
the user is considered to have logged in successfully.

Bye,
Skybuck.

I don't WANT a universal login. Using it often means you have to use
it all the time, and this makes the chances of an over-the-shoulder
compromise more likely. And if it is compromised, it turns a serious
situation into the ultimate disaster. That goes especially if the
shoulder-surfer can change the password once and it's made effective
EVERYWHERE, locking you out of your entire life all at once.

Although it's ill-advised anyway, it also lets out (or makes much
more dangerous) emergency password sharing. In an emergency, I
*might* give a trusted relative the keys to my bank account for the
purpose of bailing me out of jail or handling things while I recover
from an accident in the hospital. Or perhaps I'd hand a co-worker
a credit card to get his car fixed. Then I change the password
later. It would be *MOST* dangerous if that had to give access to
*ALL* of my bank accounts, government tax returns and benefits
accounts, etc. (Ever hear of people living with a corpse for 10
years because they can and did continue to collect that person's
pension?) I might trust relatives, but it's not an unlimited trust.
The reality of this is that you are revealing your password by
entering it into a piece of equipment you do not own, say, one of
those swipe card terminals at a store, or a public computer at a
library or airport, and you've got no idea whether it is rigged to
log passwords, by either the company that owns the thing or some
identity thief that tampered with it. (Rigged ATMs that log PINs
have been discovered.) *IF* it's properly implemented your password
won't be recorded. You don't know that. And a universal login is
a *BIG* target.
A dishonest company might choose its text to be 0 length.
The boundary between the user and everything else is between the
user's fingertips or hand and the keyboard or mouse.
Now please explain how a password is changed. Do you change it
everywhere in one shot? How? This might risk revealing where all
your accounts are. Government tax authorities would love that.
Users don't hash passwords, computers made by potentially evil
corporations possibly infected by evil viruses hash passwords with
software written by potentially evil corporations or corrupted by
evil viruses or evil governments.
I'd like to suggest that the passwords be much longer and that the
hashes be much, much longer. You haven't said anything about "user
names" to go with passwords. If the passwords stand alone for
authentication *AND* identifying an account, a collision is a
disaster, so I suggest the hashes be at least a few megabytes.
(Someone please calculate how big a hash has to be to have
one-in-a-billion probability of *any* collision between any two of
{population-of-the-earth} hashes. Now extend this to the number of
people expected to be alive at any point in the next 100 years.
Please explain how you are sure of that. If you computed the hash with
pencil and paper, entered the hash, and disposed of the paper properly,
maybe you're OK. If you didn't make a mistake and lock yourself out.
Does "don't put all your egg(head)s in one basket" suggest a problem with this?
There are reasons why people like to carry at least two independent
credit cards with them when on a long trip, plus maybe a checkbook and
some cash.
Universal identity theft?

On Sun, 17 May 2009 02:19:47 +0200, "Skybuck Flying"
Yes, I think that this is a GREAT idea. This makes it possible to
regulate everything. And we can check everybody, and see all
information of everybody.

So this really is needed.

And oh yeah, I see that your forgot to pay the parking ticket of last
month, please do that now. And you have taken more showers than
avarage. And I would suggest an alternative for those erection pills
you take. They are not good for you because your blood pressure is too
high. No, not now, but it will soon be after we implemented your login
system.

Thank you for your coorporation,
your good friend Big Brother.

This already exists, OpenID.
It was invented in 2005 and already have over 500 million users.

http://en.wikipedia.org/wiki/OpenID
http://openid.net/

- --
Solbu - http://www.solbu.net
Remove 'ugyldig.' for email
PGP key ID: 0xFA687324