|
Title: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on February 23, 2015, 05:00:51 AM https://i.imgur.com/jYAfySQ.png (https://getclef.com) Two-factor authentication from the future
How Does It Work?
Clef Values
Easy to integrate, use, and pay for
Customers Clef Reaction Gifs
Team
Clef in the News
Videos Clef Login with Clef https://i.imgur.com/1bwTDXe.png (https://vimeo.com/97555331) Clef The future of logging in https://i.imgur.com/YHUIivg.png (https://vimeo.com/103148853) TechCrunch Clef Two-Factor Authentication with Your Phone https://i.imgur.com/nOP9IeW.png (http://techcrunch.com/video/clef-two-factor-authentication-with-your-phone/518651700/) Decentral Vancouver Salon Talks: COINFEST 2015: Vanbex Edition! Synereo, Factom, Trustatom, Etherparty, Opalcoin, Clef https://i.imgur.com/qIPBAAI.png (http://youtu.be/mv4BHlnlksI) Brennen Byrne Security for the rest of us https://i.imgur.com/bPf0DH8.png (https://youtu.be/-_bCioYlcls) Decentral Talk Live Ep #67: Brennen Byrne of Clef Clef's CEO interviewed by Decentral.TV Talk Live during the 2015 Texas Bitcoin Conference. https://i.imgur.com/99HIMni.png (https://youtu.be/22SicktTiX0) Get in touch
We are based in Oakland, California https://i.imgur.com/dgTRWax.png (https://www.google.co.uk/maps/place/1212+Broadway,+Oakland,+CA+94612,+USA/@37.7953495,-122.2573829,15z/data=!4m7!1m4!3m3!1s0x808f80b6ac8aaaa5:0xa67945cbdd63f383!2s1212+Broadway,+Oakland,+CA+94612,+USA!3b1!3m1!1s0x808f80b6ac8aaaa5:0xa67945cbdd63f383) GETCLEF.COM (https://getclef.com) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: fthoughts on February 23, 2015, 08:19:42 AM Pretty sure this could be a way to make 2 factor authentication easy for exchanges to implement, then maybe we will start seeing less of what happened to blockchain.info and others. Exchanges and wallet providers *need* a secure way to keep their login details from prying eyes, and as far as I can tell Clef is actually a solution. Bitstamp, Coinbase, you guys need to listen and pay attention here.
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: YESConnie on February 23, 2015, 10:45:02 PM I'm excited that I came across this! CLEF looks absolutely amazing; way better than Authy and Google Authenticator. This can add a cool factor to help bitcoin go mainstream too. Imagine being able to access your wallet with CLEF. Whoever adopts this first will have a great competitive advantage.
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: fordlincoln on February 23, 2015, 11:17:03 PM I like that Clef is using Public / Private key crypto for 2FA -
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: starsoccer9 on February 26, 2015, 08:05:55 PM Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy.
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: MrDjAK on February 27, 2015, 01:39:11 AM Excelent job
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Cryptowatch.com on February 27, 2015, 06:57:50 AM Very interesting. Will definately look closer into this. Don't like the fingerprint idea, but I see there's alternatives to that which is good.
Any plans for supporting jolla phones? Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: fordlincoln on February 27, 2015, 10:59:28 PM Interesting - didnt hear about Jolla phones before this but found that they use Sailfish OS:
"Sailfish OS has the in-built capability to run Android™ apps on your Jolla. So you can continue using your favourite apps like Instagram, Facebook, WhatsApp and Twitter as well as downloading all the latest ones via the Yandex and Aptoide Stores and other Android™ marketplaces." As the Clef app is on Android, it would appear to work on Jolla - curious about this, please post here if this works for you Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: YESConnie on February 27, 2015, 10:59:48 PM Very interesting. Will definately look closer into this. Don't like the fingerprint idea, but I see there's alternatives to that which is good. Any plans for supporting jolla phones? Yeah, Clef feels very different than other 2FAs (but in a great way). I'm interested in seeing the growth and expansion of it on many different sites. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: sidhujag on March 01, 2015, 07:13:06 AM Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy. Bitstamp would need to add the clef plugin.. And trust the central server...Can this not be done trustlessly? I mean we are on bitcointalk right? Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Cryptowatch.com on March 01, 2015, 07:18:20 AM Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy. Bitstamp would need to add the clef plugin.. And trust the central server...Can this not be done trustlessly? I mean we are on bitcointalk right? Any 2FA system should be trustless and open source. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: sidhujag on March 01, 2015, 02:22:47 PM Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy. Bitstamp would need to add the clef plugin.. And trust the central server...Can this not be done trustlessly? I mean we are on bitcointalk right? Any 2FA system should be trustless and open source. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: fordlincoln on March 01, 2015, 08:22:45 PM Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy. Bitstamp would need to add the clef plugin.. And trust the central server...Can this not be done trustlessly? I mean we are on bitcointalk right? Any 2FA system should be trustless and open source. Not every 2FA system is trustless nor open source. Google Auth and Authy are certainly not. Clef documentation outlines they don't hold any private keys. The private key is kept on your phone and only the public key is shared with the Clef server to authenticate the OAuth handshake. http://docs.getclef.com/v1.0/docs/authenticating-users (http://docs.getclef.com/v1.0/docs/authenticating-users) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: sidhujag on March 01, 2015, 08:26:29 PM Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy. Bitstamp would need to add the clef plugin.. And trust the central server...Can this not be done trustlessly? I mean we are on bitcointalk right? Any 2FA system should be trustless and open source. Not every 2FA system is trustless nor open source. Google Auth and Authy are certainly not. Clef documentation outlines they don't hold any private keys. The private key is kept on your phone and only the public key is shared with the Clef server to authenticate the OAuth handshake. http://docs.getclef.com/v1.0/docs/authenticating-users (http://docs.getclef.com/v1.0/docs/authenticating-users) So they can lure in open source projects and then jack the rates up at will or sell information they gather to seo's? Ya sure Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: fordlincoln on March 01, 2015, 09:00:12 PM Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy. Bitstamp would need to add the clef plugin.. And trust the central server...Can this not be done trustlessly? I mean we are on bitcointalk right? Any 2FA system should be trustless and open source. Not every 2FA system is trustless nor open source. Google Auth and Authy are certainly not. Clef documentation outlines they don't hold any private keys. The private key is kept on your phone and only the public key is shared with the Clef server to authenticate the OAuth handshake. http://docs.getclef.com/v1.0/docs/authenticating-users (http://docs.getclef.com/v1.0/docs/authenticating-users) So they can lure in open source projects and then jack the rates up at will or sell information they gather to seo's? Ya sure Lure in open source projects? Not sure where that came from as it's purely a 2FA alternative to whats already out there. Atleast they don't share your information without permission. It's free for users unless you're a website owner. They get usage analytics - Projects in Bitcoin that are using it currently: Koinify.com (http://Koinify.com) Betmoose.com (http://Betmoose.com) "Clef does not share personally identifiable information with third parties without your permission. When you register at a new site that integrates Clef, we will notify you of what information the site requires and you must give permission in order for us to share it. Once you approve, the other site owns that information and we are not responsible for their use. Clef does not sell, rent, or lease its customer lists to third parties. Clef keeps track of websites users log in to using Clef. Any information you provide on those sites is shared with the owner of that site and subject to their privacy policy. Our privacy policy does not apply to such sites, and we are not responsible for the content or privacy and security practices and/or policies of those sites." https://getclef.com/privacy/ (https://getclef.com/privacy/) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: oraclechain on March 04, 2015, 03:22:05 AM Clef wave needs to be synced to complete the OAuth at the redirect URL which means that the cryptographic handshake never happens on Clef.
http://docs.getclef.com/v1.0/docs/authenticating-users (http://docs.getclef.com/v1.0/docs/authenticating-users) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 06, 2015, 05:23:30 AM Clef Announces True Logins: the first tool to protect against phishing attacks True Logins add a simple check when you log into a new computer. After you sync the Wave, Clef temporarily redirects you to a safe site and your phone asks a simple question to confirm you’re in the right place. If anything is suspicious, Clef cancels the login and sends you to getclef.com where we can be sure you aren’t being phished. Otherwise, you’re logged in like normal and we remember the computer so you only have to do the extra step once. Check out our blog post (http://blog.getclef.com/true-logins/) for more details. https://i.imgur.com/MaqbkNe.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 07, 2015, 07:17:42 AM https://i.imgur.com/0luUT2a.png (http://getclef.com) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: ikydesu on March 08, 2015, 08:11:31 PM This is incredible security project which recently the security is most important for all website service. I hope it will implemente to exchanger bitcoin which a susceptible from hacking attack.
~iki Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: true-asset on March 09, 2015, 08:32:58 PM I think the OP needs to outline the business model of Clef. How do you guys pay for all the servers and bandwidth? How do you guys pay for the technical and support staff?
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: fordlincoln on March 09, 2015, 11:31:33 PM I think the OP needs to outline the business model of Clef. How do you guys pay for all the servers and bandwidth? How do you guys pay for the technical and support staff? “Clef, an Oakland-based two-factor authentication solution that uses Apple’s fingerprint reader rather than passwords, has raised $1.6 million in seed funding from Morado Ventures and individual angel investors. www.getclef.com” http://fortune.com/2014/11/19/term-sheet-nov-19/ (http://fortune.com/2014/11/19/term-sheet-nov-19/) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: starsoccer9 on March 09, 2015, 11:32:09 PM I think the OP needs to outline the business model of Clef. How do you guys pay for all the servers and bandwidth? How do you guys pay for the technical and support staff? I am not sure that really matters much. I understand being curious, but asking how the business runs and covers costs is kinda for them to figure out. In any case tho, Clef does have tiers for companies to pay for implementation as well as support. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: fordlincoln on March 09, 2015, 11:40:38 PM This is incredible security project which recently the security is most important for all website service. I hope it will implemente to exchanger bitcoin which a susceptible from hacking attack. ~iki I believe the Clef team is actively interested in working with Bitcoin Exchanges, if you know of any please post here Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: deepbtc on March 10, 2015, 05:46:10 AM I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch.
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: sidhujag on March 10, 2015, 06:09:45 AM I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch. Exchanges are a thing of the past.. Only scammers do them noone will trsut youTitle: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: oraclechain on March 10, 2015, 09:28:58 PM I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch. Thats a great ida Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: fordlincoln on March 10, 2015, 09:31:34 PM I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch. Exchanges are a thing of the past.. Only scammers do them noone will trsut youare you serious? you're saying auctions are better then, as you are promoting an auction in your signature and yet bashing exchanges. This is unrelated to the thread topic anyways. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 10, 2015, 11:24:27 PM I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch. Will PM you Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: sidhujag on March 10, 2015, 11:50:19 PM I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch. Exchanges are a thing of the past.. Only scammers do them noone will trsut youare you serious? you're saying auctions are better then, as you are promoting an auction in your signature and yet bashing exchanges. This is unrelated to the thread topic anyways. It's going to be a DAC... using UIA from the bitshares DEX... as of right now its being developed by myself. I would like to use Clef, if we can somehow integrate it with bitshares login https://github.com/sidhujag/bitshares-prestashop-login Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: BitsparkHK on March 12, 2015, 11:06:56 AM Bitspark (http://www.bitspark.io) will be integrating Clef into our exchange and upcoming merchant products in the next 3 weeks. ;D
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coin@coin on March 13, 2015, 03:48:33 PM After I saw this thread I downloaded the Clef app and checked it out. First of all I didn't know about Clef before seeing it here.
So I gave it a go and maaan what a nicer way to login to websites! I've been using Google Authenticator for many services and it is fiddly. I wish all crypto exchanges would switch to Clef, way easier! Hope you guys succeed in getting on more exchanges! Do you have a list of available ones so far? Saw the note in the OP post, work is in progress... Keep us posted! Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 13, 2015, 04:07:53 PM After I saw this thread I downloaded the Clef app and checked it out. First of all I didn't know about Clef before seeing it here. So I gave it a go and maaan what a nicer way to login to websites! I've been using Google Authenticator for many services and it is fiddly. I wish all crypto exchanges would switch to Clef, way easier! Hope you guys succeed in getting on more exchanges! Do you have a list of available ones so far? Saw the note in the OP post, work is in progress... Keep us posted! So far we are onboard with:
We are liaising with others in the space, more updates to come soon. :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 13, 2015, 05:16:30 PM Bitspark (http://www.bitspark.io) will be integrating Clef into our exchange and upcoming merchant products in the next 3 weeks. ;D We are pleased to work with you guys! Keep us posted when it goes live! :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Blawpaw on March 13, 2015, 05:28:36 PM It's about time we had a security app like Clef! Simple & easy :P
And I really hope that most of the businesses on the crypto ecosystem can integrate this new 2FA system. I'm tired of having to manage a bunch of passwords and all the dull time wasting with it! With Clef, I will be able to secure all my accounts without having to worry about remembering lots of passwords and living in a constant fear of losing access to my accounts or being hacked. Simplicity is the way to go and Clef will turn my work a lot easier. This application really stands for innovation and simplicity and in my opinion Google Auth and other centralized options will be completely overtaken by this technology. Decentralized applications are the future and Clef seems to be taking the lead... unfortunately, my phone is an android, so I won't be able to use the touch id feature :( I just wish they come up with a similar feature for android users... Anyway... I already downloaded and installed the app on my mobile and I really love it! Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on March 17, 2015, 08:01:36 PM It's about time we had a security app like Clef! Simple & easy :P And I really hope that most of the businesses on the crypto ecosystem can integrate this new 2FA system. I'm tired of having to manage a bunch of passwords and all the dull time wasting with it! With Clef, I will be able to secure all my accounts without having to worry about remembering lots of passwords and living in a constant fear of losing access to my accounts or being hacked. Simplicity is the way to go and Clef will turn my work a lot easier. This application really stands for innovation and simplicity and in my opinion Google Auth and other centralized options will be completely overtaken by this technology. Decentralized applications are the future and Clef seems to be taking the lead... unfortunately, my phone is an android, so I won't be able to use the touch id feature :( I just wish they come up with a similar feature for android users... Anyway... I already downloaded and installed the app on my mobile and I really love it! I think it would be huge to see exchanges starting to use Clef. It only takes a minute to send in a request to your favorite exchanges. If we all did this it wouldn't be long until some of them take a real good look at what this project offers. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: unamis76 on March 17, 2015, 09:16:22 PM Any big sites coming up?
It would be cool to widespread Clef not only to Bitcoin related websites and wallets, but also to more general, mainstream sites, like social media. And if you guys get mainstream sites, you'll get all the other easily. 3rd party integration doesn't cut it... Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 17, 2015, 11:13:53 PM Any big sites coming up? It would be cool to widespread Clef not only to Bitcoin related websites and wallets, but also to more general, mainstream sites, like social media. And if you guys get mainstream sites, you'll get all the other easily. 3rd party integration doesn't cut it... Clef is being used by over 40,000 websites around the world, we continue to expand on a day to day basis. We will also make sure to announce any big "mainstream" sites on here in the future as well as any Bitcoin related partners. Thank you for the support, it's nice for the Clef team to feel the community loves our product. :) ;) :D Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on March 18, 2015, 11:36:43 PM Any big sites coming up? It would be cool to widespread Clef not only to Bitcoin related websites and wallets, but also to more general, mainstream sites, like social media. And if you guys get mainstream sites, you'll get all the other easily. 3rd party integration doesn't cut it... Clef is being used by over 40,000 websites around the world, we continue to expand on a day to day basis. We will also make sure to announce any big "mainstream" sites on here in the future as well as any Bitcoin related partners. Thank you for the support, it's nice for the Clef team to feel the community loves our product. :) ;) :D Nice stats Clef! And thanks for the updates, it's nice to know how merchant adoption is coming along. Keep us updated ;D Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: pookielax31 on March 20, 2015, 12:20:01 AM Been using it for awhile... love it...keep up the good shit clef ;D
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on March 20, 2015, 09:29:03 PM Been using it for awhile... love it...keep up the good shit clef ;D right? Super useful app. Good stuff Clef! 8) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: dooglus on March 22, 2015, 08:15:22 PM As we move more of our personal information into the cloud, we need security we can actually use. I had a quick look at this. I'm worried that if I use it, I am effectively giving the people at clef access to all my user accounts. Is that the case? Does integrating clef compromise user security? Do we have to trust the people at clef? I know with google authenticator I don't have to trust Google at all. I don't even have to install their app. The algorithm is public, and runs offline. Clef seems different - it's an online solution, and appears to rely on centralised servers. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 23, 2015, 08:26:01 PM We are featured on L’Atelier & BraveNewCoin!
L’Atelier BNP Paribas - March 19, 2015 Clef Improves Two-Factor Online Authentication (http://www.atelier.net/en/trends/articles/clef-improves-two-factor-online-authentication_434496) BraveNewCoin - March 20, 2015 Clef: Enhancing Security In The Bitcoin World (http://bravenewcoin.com/news/clef-enhancing-security-in-the-bitcoin-world/) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: dooglus on March 23, 2015, 09:47:31 PM BraveNewCoin - March 20, 2015 Clef: Enhancing Security In The Bitcoin World (http://bravenewcoin.com/news/clef-enhancing-security-in-the-bitcoin-world/) I'll repeat my question in case you missed it. Is Clef really enhancing security, or is it adding a new possible exploit vector? It seems that sites using Clef now have to trust Clef not to compromise their users' accounts (deliberately or otherwise). Is that correct? If so, that seems like it weakens security rather than strengthening it. Before Clef: I use MtGox. I have to trust MtGox not to steal my coins or get hacked. After Clef: I use MtGox and Clef. I have to trust both MtGox AND Clef not to steal my coins or get hacked. With Clef, I've doubled the number of institutions who I need to trust. Or do I have it wrong? I'd be interested in integrating Clef into Just-Dice if it really does strengthen security. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: CreationLayer on March 23, 2015, 11:52:07 PM I think the OP needs to outline the business model of Clef. How do you guys pay for all the servers and bandwidth? How do you guys pay for the technical and support staff? https://getclef.com/pricing/ I am familiar with this. Free tier does not offer premium features but has no user or request cap. It is offered free for the basic usage, simply because the cost for requests is relatively small, (bandwidth/upkeep) Larger clients that need the extra assistance, support, and metrics, potential white glove service/customization and training can pay for this service. I believe the business model is to allow companies to get on board, setup and use it easily and when they scale big enough that they may need additional resources from the company they can engage, and if not, they function as a brand ambassador. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: brennen on March 24, 2015, 01:12:22 AM BraveNewCoin - March 20, 2015 Clef: Enhancing Security In The Bitcoin World (http://bravenewcoin.com/news/clef-enhancing-security-in-the-bitcoin-world/) I'll repeat my question in case you missed it. Is Clef really enhancing security, or is it adding a new possible exploit vector? It seems that sites using Clef now have to trust Clef not to compromise their users' accounts (deliberately or otherwise). Is that correct? If so, that seems like it weakens security rather than strengthening it. Before Clef: I use MtGox. I have to trust MtGox not to steal my coins or get hacked. After Clef: I use MtGox and Clef. I have to trust both MtGox AND Clef not to steal my coins or get hacked. With Clef, I've doubled the number of institutions who I need to trust. Or do I have it wrong? I'd be interested in integrating Clef into Just-Dice if it really does strengthen security. Hey dooglas, using Clef definitely strengthens your overall security! Instead of using passwords and seeds (which need to be stored centrally and can be stolen), Clef uses public-key crypto to log users in. That means that most hacks against a Clef-protected account are completely impossible (you can see more at getclef.com/security). If Clef is hacked, we only have the public keys and so there’s nothing for an attacker to steal or use against the user. You do need to trust Clef for us to provide that protection. In the pre-Clef model, every developer is asked to stay informed about and re-implement best security practices on their own and we know that many developers are making mistakes or falling out of date. At Clef, we’re focused on doing one thing well and we’re much more likely to get it right. As for whether you can trust that we’re not a malicious company — there are a couple of useful pieces of information: * We’re a venture-backed company, so we’ve passed background checks and the company is well documented * Our address and the names of our team are all listed on our about page (getclef.com/about) * Clef has been around for more than 2 years and protects nearly 50,000 sites Early on, we experimented with sharing public keys with sites that implemented Clef so that they could verify signatures (so they could trust us even less). We found that most sites preferred a simpler integration and that the sites that did the extra work frequently messed up some of the crypto because they didn’t understand it. That lowered the security and the usability of the system, so we stopped sharing them, but it’s something we still think about. I’d be happy to hear your thoughts about this. tl;dr - to use Clef, you have to trust us, but public key auth is much harder to hack, so the overall security is way stronger Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: dooglus on March 24, 2015, 02:42:07 PM tl;dr - to use Clef, you have to trust us, but public key auth is much harder to hack, so the overall security is way stronger Do you offer a bare-bones open source client? I currently have no way of telling whether the private keys are being shared with your servers or whether they are only stored locally on my phone. Even if the private keys are currently never leaving my phone, it would be possible at some point in the future for a rogue developer at Clef to modify the client to have it send its private keys to them, at which point I lose my coins. I like the convenience of Clef, but it seems to compromise security too much right now to provide that convenience. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on March 24, 2015, 08:08:35 PM tl;dr - to use Clef, you have to trust us, but public key auth is much harder to hack, so the overall security is way stronger Do you offer a bare-bones open source client? I currently have no way of telling whether the private keys are being shared with your servers or whether they are only stored locally on my phone. I'd be interested in knowing this too Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: dooglus on March 24, 2015, 10:27:34 PM tl;dr - to use Clef, you have to trust us, but public key auth is much harder to hack, so the overall security is way stronger Do you offer a bare-bones open source client? I currently have no way of telling whether the private keys are being shared with your servers or whether they are only stored locally on my phone. I'd be interested in knowing this too I also don't see any options to back up my private keys. What happens if I lose my phone? Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: brennen on March 25, 2015, 01:29:16 AM tl;dr - to use Clef, you have to trust us, but public key auth is much harder to hack, so the overall security is way stronger Do you offer a bare-bones open source client? I currently have no way of telling whether the private keys are being shared with your servers or whether they are only stored locally on my phone. I'd be interested in knowing this too I also don't see any options to back up my private keys. What happens if I lose my phone? Thanks for the questions! These are both really interesting things that we think a lot about. We don't have a bare-bones open source client, but we are working on open sourcing all of Clef. While a bare-bones client might be appealing to some really technical users, it could lead to some really confusing (and malicious) options for non-technical users. If there are a plethora of apps that "work" with Clef, how is the average user supposed to know which ones are generating and protecting their keys correctly? Even open source, we could be compiling something extra into the app, but you can always look at the outgoing traffic from Clef on your phone to see that we're not sending the private keys. As for lost phones -- right now you can deactivate a phone by confirming an email and the four digit PIN used to set up the Clef account (this is heavily rate-limited and zero PIN attempts can be made until after the email has been confirmed). In the next few months we'll be rolling out some additional layers of proof to give users more options for resetting their account -- this'll include letting users download their private key and disable all other forms of deactivation/reactivation. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: S4VV4S on March 25, 2015, 08:38:53 AM What a great project!
@OP can you add the link to your homepage? You have link to the docs, apps, etc, but not for the actual homepage: https://getclef.com/ Just link it on your logo pic ;) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: emrebey on March 25, 2015, 08:47:29 AM really cool idea and implementation, trying out on one of my websites.
good job. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: dooglus on March 25, 2015, 07:01:49 PM We don't have a bare-bones open source client, but we are working on open sourcing all of Clef. While a bare-bones client might be appealing to some really technical users, it could lead to some really confusing (and malicious) options for non-technical users. If there are a plethora of apps that "work" with Clef, how is the average user supposed to know which ones are generating and protecting their keys correctly? I guess you don't link average users to anything except your polished version. But you make the algorithm public, and such that it can work without using your servers. Like how google-auth works. I don't have to use their app or servers at all to use their authentication protocol, but almost everyone does. Even open source, we could be compiling something extra into the app, but you can always look at the outgoing traffic from Clef on your phone to see that we're not sending the private keys. Well, I'd build my own from source to remove that danger. As for lost phones -- right now you can deactivate a phone by confirming an email and the four digit PIN used to set up the Clef account (this is heavily rate-limited and zero PIN attempts can be made until after the email has been confirmed). In the next few months we'll be rolling out some additional layers of proof to give users more options for resetting their account -- this'll include letting users download their private key and disable all other forms of deactivation/reactivation. There are two problems with losing your phone: 1) the finder can get into your account 2) the loser can no longer access their account It's 2) that concerns me. How do I get back into my accounts once I lose the only copy of the required private keys? With google-auth I simply go to the paper backup of the 16 letter secret I made when I set up 2FA. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on March 25, 2015, 09:39:32 PM really cool idea and implementation, trying out on one of my websites. good job. I'd be interested to hear how it goes. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: brennen on March 27, 2015, 02:39:14 AM There are two problems with losing your phone: 1) the finder can get into your account 2) the loser can no longer access their account It's 2) that concerns me. How do I get back into my accounts once I lose the only copy of the required private keys? With google-auth I simply go to the paper backup of the 16 letter secret I made when I set up 2FA. Yeah, the tradeoff for all of this is how much Clef manages vs. how much users manage their own security process. Tools like Google Authenticator give you more control over the technical process, but that's a lot of rope to let users hang themselves with. The result is that most sites see <1% of users opt-in to using two-factor, and even in Bitcoin that number is less than 15%. For the few users who are technical enough, that helps protect their accounts (unless there is a server breach, phishing, or bucket brigade attack). Clef sees more than 50% of users opt-in because they don't need to manage any of the process. At the site level, that means a whole lot more users are actually safe and we can reduce fraud by a much more significant factor (as well as protect from more common attacks). For account reactivation, that focus on usability means we never ask users to write down their key (of the few people who use token-based two-factor, less than 1% write down their backup codes). Instead, we set them up with a new key pair once we confirm their identity with the process I described before. A little while ago, I had a conversation with 5 ex-DOD white hats about Clef's architecture. At the end of my overview, one of them asked "How do you handle nation-state attacks when they're willing to used advanced interrogation to compromise an account." I told him we weren't solving for that yet :) There are a lot of ways to make theoretical security gains, but the only security that matters is the security you use. ;) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 27, 2015, 04:46:57 AM What a great project! @OP can you add the link to your homepage? You have link to the docs, apps, etc, but not for the actual homepage: https://getclef.com/ Just link it on your logo pic ;) It was linked at the bottom on the "GETCLEF.COM" in orange, also in the "get in touch" section it is the first link on the left. I have now added it to the blue logo on the top as well. Thanks for pointing that out. :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on March 27, 2015, 04:50:55 PM Looking good Clef - I think this will gain traction in crypto, give it time - good luck!
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 27, 2015, 07:23:02 PM Looking good Clef - I think this will gain traction in crypto, give it time - good luck! We thank you for the support coinking. :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on March 31, 2015, 05:50:20 PM Any news or updates to report? Keep it up!
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on March 31, 2015, 06:11:21 PM Any news or updates to report? Keep it up! Make sure you setup clef on your koinify account so your factoids are safe :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 01, 2015, 04:38:31 PM Any news or updates to report? Keep it up! Make sure you setup clef on your koinify account so your factoids are safe :) Great, will do! Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 05, 2015, 12:45:09 AM We are featured on CoinTelegraph today :) Security Is More than a Password — It's a Signature (http://cointelegraph.com/news/113872/security-is-more-than-a-password-its-a-signature) https://i.imgur.com/QT7V9CG.jpg Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: freemind1 on April 06, 2015, 12:15:07 PM Very good article, this well explained and even new users can understand all information without problems. It seems much safer than Google Authenticator and from what i 've seen in the video is also simple to use.
Congratulations for your work and thanks for sharing. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 06, 2015, 06:04:34 PM We are featured on CoinTelegraph today :) Security Is More than a Password — It's a Signature (http://cointelegraph.com/news/113872/security-is-more-than-a-password-its-a-signature) https://i.imgur.com/QT7V9CG.jpg Great article Clef! It's nice to see the community support. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 07, 2015, 08:32:54 PM Nice article, it explains 2FA really well. Hope to see Clef on more exchanges, used it on Koinify for the Factom Sale and it works a treat! yeah, me too. Once you get it set up (which takes max 1 min) it works like a charm 8) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 08, 2015, 04:50:26 AM Decentral Talk Live Ep #67: Brennen Byrne of Clef Clef's CEO interviewed by Decentral.TV Talk Live during the 2015 Texas Bitcoin Conference. https://i.imgur.com/99HIMni.png (https://youtu.be/22SicktTiX0) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: btc_enigma on April 08, 2015, 07:34:42 AM tl;dr - to use Clef, you have to trust us, but public key auth is much harder to hack, so the overall security is way stronger Do you offer a bare-bones open source client? I currently have no way of telling whether the private keys are being shared with your servers or whether they are only stored locally on my phone. I'd be interested in knowing this too I also don't see any options to back up my private keys. What happens if I lose my phone? This is very good question that I am also having. Your online documentation only talks about public key cryptography and says nothing about where the private keys are stored and their security. I guess the phone is generating a signature using the private key. Can you put more detail on how this is secure:
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: LOBSTER on April 08, 2015, 10:11:05 AM I think the project is pretty cool. What I like is a function to backup your data. For example if I would lose my phone with Google Authenticator, I could never access my funds on an online wallet like blockchain.info again...
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 08, 2015, 10:32:06 PM Decentral Talk Live Ep #67: Brennen Byrne of Clef Clef's CEO interviewed by Decentral.TV Talk Live during the 2015 Texas Bitcoin Conference. https://i.imgur.com/99HIMni.png (https://youtu.be/22SicktTiX0) Nice vid, it's good to see the faces behind Clef. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: fordlincoln on April 09, 2015, 07:16:05 PM started using Clef and noticed that the app logs me out of everything when I'm asleep - it's a good feature and yea I know I should log out of everything when I leave the site but apparently I forget.
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: brennen on April 10, 2015, 12:31:18 AM This is very good question that I am also having. Your online documentation only talks about public key cryptography and says nothing about where the private keys are stored and their security. I guess the phone is generating a signature using the private key. Can you put more detail on how this is secure:
Good questions :) The private keys are generated and stored on the phone -- on iOS we get to use hardware encryption and on Android we use PIN-based encryption (though we're considering using something like Rivetz here). We use the standard system libraries for both platforms to generate the keys which offer plenty of entropy for this kind of usage (http://android-developers.blogspot.de/2013/08/some-securerandom-thoughts.html -- the SecureRandom patch of course happening after August 2013). As for being Internet connected -- when we talk about theoretical security, an Internet-connected phone will never provide the same level of protection as a dedicated offline device. That said, dedicated devices as they exist today are all seed-based (and so must have a server counterpart that stores the exact same seed and which IS Internet connected as well as centralized). A key based, dedicated offline device is definitely possible, but the infeasibility of distributing them along with the increased burden of training people how to use them make them pretty farfetched for a broad audience. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: btchip on April 10, 2015, 02:01:25 AM That said, dedicated devices as they exist today are all seed-based (and so must have a server counterpart that stores the exact same seed and which IS Internet connected as well as centralized). Do you know FIDO (https://fidoalliance.org/) ? Devices are already available (http://www.amazon.com/s/ref=nb_sb_noss?url=search-alias%3Daps&field-keywords=u2f+security+key), cheap, extremely simple to use, and based on open standards. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: btc_enigma on April 10, 2015, 05:46:29 AM This is very good question that I am also having. Your online documentation only talks about public key cryptography and says nothing about where the private keys are stored and their security. I guess the phone is generating a signature using the private key. Can you put more detail on how this is secure:
Good questions :) The private keys are generated and stored on the phone -- on iOS we get to use hardware encryption and on Android we use PIN-based encryption (though we're considering using something like Rivetz here). We use the standard system libraries for both platforms to generate the keys which offer plenty of entropy for this kind of usage (http://android-developers.blogspot.de/2013/08/some-securerandom-thoughts.html -- the SecureRandom patch of course happening after August 2013). As for being Internet connected -- when we talk about theoretical security, an Internet-connected phone will never provide the same level of protection as a dedicated offline device. That said, dedicated devices as they exist today are all seed-based (and so must have a server counterpart that stores the exact same seed and which IS Internet connected as well as centralized). A key based, dedicated offline device is definitely possible, but the infeasibility of distributing them along with the increased burden of training people how to use them make them pretty farfetched for a broad audience. Great. Good to know you guys have put enough thought into the security. Thumbs up for clef Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: bassguitarman on April 10, 2015, 06:45:14 AM I did a little op-ed on clef, I hope you enjoy it
http://bitsofnews.net/more-than-just-an-authenticator/ Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 10, 2015, 09:04:57 PM I did a little op-ed on clef, I hope you enjoy it http://bitsofnews.net/more-than-just-an-authenticator/ Nice article bassguitarman! Nothing like an outside review of a service. Cheers for that. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 11, 2015, 12:49:17 AM I did a little op-ed on clef, I hope you enjoy it http://bitsofnews.net/more-than-just-an-authenticator/ We appreciate the support bassguitarman, good read! :) Are you planning to use or have been using Clef? Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 12, 2015, 05:20:16 PM We are glad to be able to help improve security on Koinify.com (http://koinify.com/). Best wishes to both the Koinify and Factom teams with their ongoing Software Sale! https://i.imgur.com/CKfrQHf.png As featured on Bitcoinist.net (http://bitcoinist.net/koinify-partner-clef-secure-2fa/) https://i.imgur.com/7hFexCS.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 12, 2015, 08:48:30 PM We are glad to be able to help improve security on Koinify.com (http://koinify.com/). Best wishes to both the Koinify and Factom teams with their ongoing Software Sale! https://i.imgur.com/CKfrQHf.png As featured on Bitcoinist.net (http://bitcoinist.net/koinify-partner-clef-secure-2fa/) https://i.imgur.com/7hFexCS.png Looks like there's some good connections being made. Looking forward to more! Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 12, 2015, 11:40:51 PM We are glad to be able to help improve security on Koinify.com (http://koinify.com/). Best wishes to both the Koinify and Factom teams with their ongoing Software Sale! https://i.imgur.com/CKfrQHf.png As featured on Bitcoinist.net (http://bitcoinist.net/koinify-partner-clef-secure-2fa/) https://i.imgur.com/7hFexCS.png Looks like there's some good connections being made. Looking forward to more! Make sure you listen in the coming weeks for more great announcements ;D Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: FACTOM on April 13, 2015, 12:11:06 AM We are glad to be able to help improve security on Koinify.com (http://koinify.com/). Best wishes to both the Koinify and Factom teams with their ongoing Software Sale! We thank you for making the login process on Koinify easier and for the support! Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: valkir on April 13, 2015, 12:54:15 AM Great Job Clef Team! Its working perfectly! ;D
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 13, 2015, 01:10:52 AM Great Job Clef Team! Its working perfectly! ;D We are happy to be of help. Thanks for the feedback. :) ;) :D Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: valkir on April 13, 2015, 01:47:44 AM Could you check with koinify. I cant connect with Waltz and Koinify.
Thanks ;) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 13, 2015, 12:08:07 PM Could you check with koinify. I cant connect with Waltz and Koinify. Thanks ;) We suggest checking with Koinify first at helpdesk@koinify.com. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 14, 2015, 01:00:57 AM https://i.imgur.com/Co1SqPO.png Bitcoin news site, Bitcoins in New York City now supports Clef login! Check it out: http://bitcoinsin.nyc/ Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coin@coin on April 14, 2015, 01:36:41 PM Bitcoin news site, Bitcoins in New York City now supports Clef login! Check it out: http://bitcoinsin.nyc/ Nice to see Clef getting integrated in more and more Crypto related sites and tools. Way to go! ;D Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: valkir on April 14, 2015, 07:10:17 PM Just a question, Is waltz is the only system to use clef?? Just wondering.
I guess Clef created Waltz too ? Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: starsoccer9 on April 14, 2015, 10:16:32 PM Just a question, Is waltz is the only system to use clef?? Just wondering. I guess Clef created Waltz too ? Well you can use clef on a bunch of sites, 60,151 to be exact.Just to name one, Koinify, but there are many others. A bunch on listed on getclef.com Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 15, 2015, 01:41:46 AM Just a question, Is waltz is the only system to use clef?? Just wondering. I guess Clef created Waltz too ? Well you can use clef on a bunch of sites, 60,151 to be exact.Just to name one, Koinify, but there are many others. A bunch on listed on getclef.com whoa, that number is growing fast! Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 15, 2015, 06:00:05 AM It's true! We protect against more threats than any other two-factor authentication system. See how our protection compares to Google Authenticator: https://i.imgur.com/Vnx1nvc.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 15, 2015, 08:06:58 PM It's true! We protect against more threats than any other two-factor authentication system. See how our protection compares to Google Authenticator: https://i.imgur.com/Vnx1nvc.png Interesting, I didn't realize it stacked up quite like that - thanks for the chart Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: starsoccer9 on April 15, 2015, 08:07:52 PM Would be nice to have a bit of explanation next to the types of attacks to explain how they work
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 16, 2015, 01:46:25 AM You don't want to miss tomorrow's Bitcoin Meetup! Joey Krug of the decentralized prediction market, Augur, has been added to the speaker lineup. Joey will join Jad Mubaslat and Chad Davis of Bitquick tomorrow evening at our Oakland headquarters. More details here: https://meetup.com/East-Bay-Bitcoin-Meetup/events/221117746/ https://i.imgur.com/v9HQs96.png https://i.imgur.com/HnuggjE.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 16, 2015, 03:33:10 PM A reminder of tonight's Meetup at Clef HQ in Oakland: https://meetup.com/East-Bay-Bitcoin-Meetup/events/221117746/ https://i.imgur.com/4Blm5ET.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: starsoccer9 on April 17, 2015, 02:10:08 PM Cool, to bad im not anywhere near oakland
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 17, 2015, 02:31:37 PM Would be nice to have a bit of explanation next to the types of attacks to explain how they work good idea. I've heard of em all but not sure of the specifics. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 17, 2015, 06:57:58 PM Would be nice to have a bit of explanation next to the types of attacks to explain how they work Thanks for the feedback. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 18, 2015, 10:41:42 PM Clef (http://getclef.com) protects against more threats than any other two-factor authentication system. https://i.imgur.com/swxbnCL.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 20, 2015, 04:16:44 PM Clef (http://getclef.com) protects against more threats than any other two-factor authentication system. https://i.imgur.com/swxbnCL.png Really the best way is to break it down so well done. I'm a visual guy so seeing these charts makes way more sense for me. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 20, 2015, 06:14:13 PM We are thrilled to announce that Bitspark (https://bitspark.io/) has now implemented Clef authentication.
The CEO of Bitspark George Harrap said, “Our whole team got excited about the technology and the integration was really quick.” “It is absolutely critical that we find ways to make Bitcoin useful to more people, and I’m excited that Clef can help make that happen. We need to be building security that is approachable and that people actually have access to, because that's the only way we're ever going to succeed as an ecosystem. When we think about the next generation of Bitcoin technology, Bitspark is exactly the kind of product that gets us excited.” Stated Brennen Byrne, CEO and co-founder of Clef. https://bitspark.io/assets/bs-logo-1-4a0aa2f190c87d172b7dfdb60b7c4529.png The news are featured on Brave New Coin: Bitspark Implements Clef, ‘Authentication From the Future’ (http://bravenewcoin.com/news/bitspark-implements-clef-authentication-from-the-future/) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Fargo on April 20, 2015, 07:26:36 PM Why so pricey?
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 21, 2015, 08:19:58 AM Why so pricey? Can you tell us more about how you think it is pricey? We appreciate the feedback. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 21, 2015, 07:54:41 PM We are thrilled to announce that Bitspark (https://bitspark.io/) has now implemented Clef authentication. The CEO of Bitspark George Harrap said, “Our whole team got excited about the technology and the integration was really quick.” “It is absolutely critical that we find ways to make Bitcoin useful to more people, and I’m excited that Clef can help make that happen. We need to be building security that is approachable and that people actually have access to, because that's the only way we're ever going to succeed as an ecosystem. When we think about the next generation of Bitcoin technology, Bitspark is exactly the kind of product that gets us excited.” Stated Brennen Byrne, CEO and co-founder of Clef. https://bitspark.io/assets/bs-logo-1-4a0aa2f190c87d172b7dfdb60b7c4529.png The news are featured on Brave New Coin: Bitspark Implements Clef, ‘Authentication From the Future’ (http://bravenewcoin.com/news/bitspark-implements-clef-authentication-from-the-future/) This is a big step in the right direction. Congrats on the partnership :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 22, 2015, 11:32:04 PM We're having so much fun with Reaction GIFs! The next time you log in with Clef, you’ll have the chance to record your reaction in the most immortal format — a GIF! Plus, we’ll be sending out Clef t-shirts to the folks who make our favorite Reaction GIFs — so go check it out and let us see your Clef Face! https://i.imgur.com/ioBM6Lg.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 23, 2015, 05:34:42 PM Ziftr is Revolutionizing Shopping — Without Passwords
Clef continues to spread among Bitcoin/cryptocurrency companies today as you can start using Clef to log in to ziftrPAY, a credit card payment platform. E-commerce is an important place for cryptocurrency to gain adoption, and Ziftr is building all of the critical pieces of infrastructure to make it work. We believe in the huge potential of ziftrPAY and are excited for Clef users to try it out! “With ziftrPAY, we’re creating a simple, secure shopping experience for merchants and shoppers, so it makes perfect sense for us to incorporate two-factor authentication from a company that also values simplicity and security,” said Bob Wilkins, CEO of Ziftr. “This partnership with Clef brings together two innovative companies that are reinventing user experiences and making waves in our respective industries.” "Usability is the missing ingredient keeping cryptocurrency from going mainstream, which is what makes us so excited to be working with Ziftr,” said Brennen Byrne, CEO of Clef. “With ziftrPAY, they're helping bring a whole new tier of merchants into the fold and making it easier for anyone to pay." What’s the partnership between Ziftr and Clef all about? ziftrPAY, the next-generation cryptocurrency and credit card payment platform and customer loyalty program, will be integrating Clef to provide enhanced security and convenience for ziftrPAY users. ziftrPAY users will essentially have the option of signing into their accounts using Clef or using a traditional password login. At Clef, we really believe in the power of cryptocurrencies and making them easier to use, and Ziftr fits perfectly with our vision. That’s why, as a part of this partnership, we’ll also be using ziftrPAY for payments from the sites that use Clef’s premium tiers. We’re impressed with the tools Ziftr has built and are excited to be using them ourselves. There’s no doubt about it: People love having options! This partnership between Ziftr and Clef gives both ziftrPAY and Clef users the freedom of choice: whether it’s about how they log in to the ziftrPAY platform or how they pay for Clef’s services. For more on ziftrPAY, visit https://www.ziftrPAY.com. For more on Clef, visit https://www.getclef.com. http://d2p68wmhm6quvw.cloudfront.net/assets/images/new_homepage/ziftr_big_logo.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coin@coin on April 23, 2015, 11:41:30 PM You guys have been busy. I'll be testing the GIFs reactions, I saw some of the ones already made on Twitter: they are hilarious!
I fancy myself a Clef t-shirt, of course if you favorite me! ;D And the ziftrPAY integration is also good news. Well done to the Clef Team. I wish it could be implemented on more exchanges but I think I mentioned that before... Keep us posted. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 23, 2015, 11:44:54 PM You guys have been busy. I'll be testing the GIFs reactions, I saw some of the ones already made on Twitter: they are hilarious! I fancy myself a Clef t-shirt, of course if you favorite me! ;D And the ziftrPAY integration is also good news. Well done to the Clef Team. I wish it could be implemented on more exchanges but I think I mentioned that before... Keep us posted. Feel free to submit your GIF by using the Facebook and Twitter share buttons once it is uploaded. We keep an eye on all submission and look forward to new ones. We are in talks with many Bitcoin related projects and companies and will keep posting updates and news as they come. Thank you for the support. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 23, 2015, 11:49:07 PM We are featured on CoinTelegraph today. The Rising Wave of Crypto Two-Factor Authentication (http://cointelegraph.com/news/114056/the-rising-wave-of-crypto-two-factor-authentication) https://i.imgur.com/ZODBadP.jpg Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: starsoccer9 on April 23, 2015, 11:51:35 PM Cool another great partnership. When will I be able to login to bitcointalk with clef? ;D
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on April 23, 2015, 11:59:53 PM Cool another great partnership. When will I be able to login to bitcointalk with clef? ;D We are open to help anyone implement Clef. It would be a pleasure to have Bitcointalk integrate Clef. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 25, 2015, 07:14:03 PM Ziftr is Revolutionizing Shopping — Without Passwords Clef continues to spread among Bitcoin/cryptocurrency companies today as you can start using Clef to log in to ziftrPAY, a credit card payment platform. E-commerce is an important place for cryptocurrency to gain adoption, and Ziftr is building all of the critical pieces of infrastructure to make it work. We believe in the huge potential of ziftrPAY and are excited for Clef users to try it out! “With ziftrPAY, we’re creating a simple, secure shopping experience for merchants and shoppers, so it makes perfect sense for us to incorporate two-factor authentication from a company that also values simplicity and security,” said Bob Wilkins, CEO of Ziftr. “This partnership with Clef brings together two innovative companies that are reinventing user experiences and making waves in our respective industries.” "Usability is the missing ingredient keeping cryptocurrency from going mainstream, which is what makes us so excited to be working with Ziftr,” said Brennen Byrne, CEO of Clef. “With ziftrPAY, they're helping bring a whole new tier of merchants into the fold and making it easier for anyone to pay." What’s the partnership between Ziftr and Clef all about? ziftrPAY, the next-generation cryptocurrency and credit card payment platform and customer loyalty program, will be integrating Clef to provide enhanced security and convenience for ziftrPAY users. ziftrPAY users will essentially have the option of signing into their accounts using Clef or using a traditional password login. At Clef, we really believe in the power of cryptocurrencies and making them easier to use, and Ziftr fits perfectly with our vision. That’s why, as a part of this partnership, we’ll also be using ziftrPAY for payments from the sites that use Clef’s premium tiers. We’re impressed with the tools Ziftr has built and are excited to be using them ourselves. There’s no doubt about it: People love having options! This partnership between Ziftr and Clef gives both ziftrPAY and Clef users the freedom of choice: whether it’s about how they log in to the ziftrPAY platform or how they pay for Clef’s services. For more on ziftrPAY, visit https://www.ziftrPAY.com. For more on Clef, visit https://www.getclef.com. http://d2p68wmhm6quvw.cloudfront.net/assets/images/new_homepage/ziftr_big_logo.png Great update! Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on April 25, 2015, 07:15:33 PM Cool another great partnership. When will I be able to login to bitcointalk with clef? ;D In due time :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coin@coin on April 28, 2015, 03:23:37 AM There are some really cool Reaction GIFs on Clef's Twitter: https://twitter.com/getclef. ::) :o
I think one of the best ones is this one: https://twitter.com/sashalives/status/590172262726144001 This one is wicked! https://twitter.com/getclef/status/590202196450365441 And this one: https://twitter.com/carbonsoldier/status/589048964181336064 What other ones do you guys like? Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: The Bitcoin Co-op on May 03, 2015, 06:16:44 AM http://www.newsbtc.com/wp-content/uploads/2015/04/MULTI-FACTOR-AUTHENTICATION-300x150.png
Andrew wrote a great piece on multifactor authentication that talks a lot about Clef. Check it out: http://www.newsbtc.com/2015/05/01/multi-factor-authentication/ Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 04, 2015, 04:27:20 AM http://www.newsbtc.com/wp-content/uploads/2015/04/MULTI-FACTOR-AUTHENTICATION-300x150.png Andrew wrote a great piece on multifactor authentication that talks a lot about Clef. Check it out: http://www.newsbtc.com/2015/05/01/multi-factor-authentication/ Thanks for sharing it with us. Will add to our article list in the OP. :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 05, 2015, 01:26:05 AM Another article about Clef on Inside Bitcoins.
We are pleased to have been of help to both Factom and Koinify to protect their Software Sale. Clef’s Success Story: Protecting the Factom Token Sale (http://insidebitcoins.com/news/clefs-success-story-protecting-the-factom-token-sale/32179) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on May 08, 2015, 04:13:28 PM I think for most people it's hard for them to justify switching providers if they've been using one that works well for so long. Incentivizing the switch could be a good marketing move. Signature campaign, contests, draws and/or more media and user engagement is the key. I know for me I like to listen to recorded interviews or watch vids. Keep it up guys, you're doing great stuff here.
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: starsoccer9 on May 08, 2015, 07:56:50 PM I think for most people it's hard for them to justify switching providers if they've been using one that works well for so long. Incentivizing the switch could be a good marketing move. Signature campaign, contests, draws and/or more media and user engagement is the key. I know for me I like to listen to recorded interviews or watch vids. Keep it up guys, you're doing great stuff here. agreed, I think most companies dont realize how insecure other 2Fa solutions are until it is to late. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 10, 2015, 11:36:17 PM
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 12, 2015, 03:11:02 AM Check out our new promo thread:
Share Your Reaction GIFs and Win Clef Swag (https://bitcointalk.org/index.php?topic=1058249.0) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on May 12, 2015, 06:30:32 PM
This is great idea. When will the bug bounty program end? Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 14, 2015, 03:42:57 AM This is great idea. When will the bug bounty program end? We keep updating our app and API over time so it will be ongoing. Thanks for asking. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 14, 2015, 04:00:33 AM We are a proud sponsor (https://developers.coinbase.com/bithack/sponsors) of the Coinbase BitHack V2 online competition, and we'll be giving away a Jawbone BIG JAMBOX Bluetooth Speaker to one lucky winner! Developers building innovative apps with bitcoin can participate from anywhere. Learn more: https://developers.coinbase.com/bithack https://i.imgur.com/w1dMuDU.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 17, 2015, 04:07:16 PM The first of our weekly GIF reactions winners has been selected. Congratulations go to @mikowhy for his entry below. :) http://twitter.com/getclef/status/599413024605220864 https://i.imgur.com/ZFioot3.gif Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 17, 2015, 04:13:59 PM Come and join Clef at the EAST BAY BITCOIN MEETUP, Thursday 21st May, 7PN at Clef HQ.
Speaker Lineup: Jad Mubaslat, CEO & Founder, Bitquick RSVP Here: http://www.meetup.com/East-Bay-Bitcoin-Meetup/events/222117175/ https://i.imgur.com/MQbzKDB.png Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 20, 2015, 06:19:15 AM AlphaPoint Integrates Clef
19 May 2015 AlphaPoint (https://alphapoint.com), the leading technology backend for Bitcoin exchanges, announced today that they will support Clef for any of their exchanges. Bitcoin exchanges are at the very heart of the ecosystem, and AlphaPoint powers many of them, including Bitfinex, the largest exchange in the US. Security is critical for exchanges, who see large amounts of traffic and huge volumes of money pass through their system every day. Two-factor authentication is offered by some, but the extra security that Clef offers is a major differentiator for high-value sites. In addition, opt-in rates for traditional two-factor auth are under 15%, while Clef sees more than 50% of users choose our passwordless logins. We have been focused on serving the Bitcoin community and the integration with AlphaPoint goes a long way to helping us protect more cryptocurrency sites. Individual exchanges will still need to enable Clef to get the protection of this integration, but several exchanges have already announced that they’ll be enabling Clef immediately, including MeXBT (https://mexbt.com/), FlowBTC (https://trader.flowbtc.com/), and Bitt (https://www.bitt.com/). Stay tuned for more Bitcoin announcements coming in the next few weeks! http://www.coinbuzz.com/wp-content/uploads/2015/05/alphapointintegratesclef.png As featured on: Bitcoinist.net: AlphaPoint Adopts Clef’s No-Password Two-Factor Authentication (http://bitcoinist.net/alphapoint-adopts-clef-no-password-two-factor-authentication/) CoinBuzz: AlphaPoint Announces Clef Support (http://www.coinbuzz.com/2015/05/19/alphapoint-announces-clef-support-2/) Inside Bitcoins: AlphaPoint Adopts Clef’s No-Password Two-Factor Authentication (http://insidebitcoins.com/news/alphapoint-adopts-clefs-no-password-two-factor-authentication/32579) Bitcoin Magazine: AlphaPoint Integrates 2FA Service Clef for Secure Logins to Bitcoin Exchanges (https://bitcoinmagazine.com/20476/alphapoint-integrates-2fa-service-clef-for-secure-logins-to-bitcoin-exchanges/) NewsBTC: AlphaPoint Bitcoin Exchange Platform Adopts Clef Security (http://www.newsbtc.com/2015/05/19/alphapoint-adopts-clef/) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coin@coin on May 20, 2015, 06:47:23 AM WOW that is really good news for Clef and all the exchanges that operate with AlphaPoint.
Looking forward to see some of the other 20 exchanges use Clef Logins! Congratulations to the team. :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on May 20, 2015, 10:55:30 PM The first of our weekly GIF reactions winners has been selected. Congratulations go to @mikowhy for his entry below. :) http://twitter.com/getclef/status/599413024605220864 https://i.imgur.com/ZFioot3.gif Haha, when is the next winner announced? Fingers crossed! Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: mastertrader777 on May 21, 2015, 01:37:03 AM Andrew (Clef Team),
It was great speaking with you tonight. Working on CLEF integration now for ToshiDesk login page! Thanks for contacting us, and look forward to working with you guys! Cheers, MasterTrader777 https://bitcointalk.org/index.php?topic=954240.0 www.ToshiDesk.com/beta http://cointelegraph.com/news/114263/the-future-of-cryptocurrency-trading-may-require-making-it-social Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 21, 2015, 06:05:41 PM We are excited to announce that work is in progress to integrate Clef with our friends at ToshiDesk (http://www.toshidesk.com/beta/). We have been collaborating and we are finalizing the integration. https://i.imgur.com/kZsAEkb.png About ToshiDesk The ToshiDesk concept is based on PHP Yii framework that utilizes a custom social networking platform - closed source. ToshiDesk will host a social trading platform where Masters will share trade information, charts and analysis with Traders. The platform is tied into a compensation system and Masters receive tips, depending on their success rating and following. Trading API's will be a premium feature which will accurately track and mimic your favorite MasterTrader’s trading techniques. Our goal is to enhance the way people trade by building a true trading ecosystem allowing ToshiDesk to Evolve the Face of Crypto - MasterTrader777 By using Clef, ToshiDesk will be making their platform login process easier and more secure. We look forward to working together. ToshiDesk Bitcointalk Thread: https://bitcointalk.org/index.php?topic=954240.msg11440150#msg11440150 Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: alani123 on May 25, 2015, 09:10:42 PM I was hoping to see a service based on a similar concept sooner or later. This seems like a nice execution of it. Putting this topic on my watchlist. :)
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 25, 2015, 09:12:56 PM I was hoping to see a service based on a similar concept sooner or later. This seems like a nice execution of it. Putting this topic on my watchlist. :) We appreciate the support, thank you. :) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 25, 2015, 09:14:03 PM The second of our weekly GIF reactions winners has been selected. Congratulations go to @ABKleinEU for his entry below. :) https://twitter.com/ABKleinEU/status/591168007814152192 https://i.imgur.com/9BmW997.gif Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 27, 2015, 03:55:45 AM BitQuick Adds Clef Support.
Today we have another exciting Bitcoin integration of Clef to announce! BitQuick (http://bitquick.co/), the fastest way to buy and sell Bitcoins, has added Clef protection to their accounts. BitQuick has rapidly grown their volume by circumventing some of the traditional requirements for buying Bitcoin and making the process take hours instead of days. In an industry where every millisecond is tracked to help increase sales, speed is a huge asset both for the company and for the entire Bitcoin ecosystem. “Everyone in the ecosystem is talking about friction, and how we can reduce the friction in using Bitcoin,” said Brennen Byrne, CEO of Clef. “But the first Bitcoin purchase is still unforgivably slow on most systems. That’s why we’re so excited to see BitQuick solving the Bitcoin purchase problem. To get more people owning and spending Bitcoin is the key, and I know that Clef users are going to love BitQuick." “For us, Clef is more than just an evolved two-factor solution,” said Jad Mubaslat, CEO of BitQuick. “We’re excited about using Clef to replace confusing passwords altogether. This improves both the experience and security habits of our users.” As reported on Bitcoin Magazine: https://bitcoinmagazine.com/20553/bitquick-goes-passwordless/ Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on May 27, 2015, 04:32:57 AM BitQuick Adds Clef Support. Today we have another exciting Bitcoin integration of Clef to announce! BitQuick (http://bitquick.co/), the fastest way to buy and sell Bitcoins, has added Clef protection to their accounts. BitQuick has rapidly grown their volume by circumventing some of the traditional requirements for buying Bitcoin and making the process take hours instead of days. In an industry where every millisecond is tracked to help increase sales, speed is a huge asset both for the company and for the entire Bitcoin ecosystem. “Everyone in the ecosystem is talking about friction, and how we can reduce the friction in using Bitcoin,” said Brennen Byrne, CEO of Clef. “But the first Bitcoin purchase is still unforgivably slow on most systems. That’s why we’re so excited to see BitQuick solving the Bitcoin purchase problem. To get more people owning and spending Bitcoin is the key, and I know that Clef users are going to love BitQuick." “For us, Clef is more than just an evolved two-factor solution,” said Jad Mubaslat, CEO of BitQuick. “We’re excited about using Clef to replace confusing passwords altogether. This improves both the experience and security habits of our users.” As reported on Bitcoin Magazine: https://bitcoinmagazine.com/20553/bitquick-goes-passwordless/ keep on, keeping on! Love to see Clef get more recognition and a good pairing 8) Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on May 30, 2015, 01:27:03 AM The third of our weekly GIF reactions winners has been selected. Congratulations go to @BerniePTeam for his entry below. :) https://twitter.com/BerniePTeam/status/601541016378679297 https://i.imgur.com/pEK428I.gif Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on June 06, 2015, 07:47:58 PM Nice mention for Clef on Business Insider Passwords simply don't work — here’s how people are trying to fix the problem (http://uk.businessinsider.com/best-password-alternatives-2015-6?op=1) http://static5.uk.businessinsider.com/image/556ef982dd089577608b45a2-1200/theres-also-clef.jpg Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on June 09, 2015, 02:53:13 PM any updates on who won the 2nd and 3rd week GIF contests? I'm a med btw :P
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: mastertrader777 on June 09, 2015, 03:38:10 PM We are excited to announce that work is in progress to integrate Clef with our friends at ToshiDesk (http://www.toshidesk.com/beta/). We have been collaborating and we are finalizing the integration. https://i.imgur.com/kZsAEkb.png About ToshiDesk The ToshiDesk concept is based on PHP Yii framework that utilizes a custom social networking platform - closed source. ToshiDesk will host a social trading platform where Masters will share trade information, charts and analysis with Traders. The platform is tied into a compensation system and Masters receive tips, depending on their success rating and following. Trading API's will be a premium feature which will accurately track and mimic your favorite MasterTrader’s trading techniques. Our goal is to enhance the way people trade by building a true trading ecosystem allowing ToshiDesk to Evolve the Face of Crypto - MasterTrader777 By using Clef, ToshiDesk will be making their platform login process easier and more secure. We look forward to working together. ToshiDesk Bitcointalk Thread: https://bitcointalk.org/index.php?topic=954240.msg11440150#msg11440150 Clef Integration within ToshiDesk Social Trading Platform is now 100% complete! Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on June 19, 2015, 12:34:56 PM Clef Integration within ToshiDesk Social Trading Platform is now 100% complete! We are happy to be part of the solution for ToshiDesk! :) It's has been great working together and looking forward to continue to do so in the future. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Clef on June 19, 2015, 12:49:25 PM
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: coinking on June 19, 2015, 10:09:11 PM
This is a great idea! One suggestion would be to make these meetings happen in other cities all over North America. Even if it was once a year, it would be pretty epic. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: The Bitcoin Co-op on June 21, 2015, 02:45:14 AM There's another Clef article out: http://www.newsbtc.com/2015/06/21/clef-the-bitcoin-of-user-authentication/
Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Argwai96 on June 22, 2015, 02:12:26 PM There's another Clef article out: http://www.newsbtc.com/2015/06/21/clef-the-bitcoin-of-user-authentication/ Looking into clef now, checking it out on my phone hopefully we could get more sites to use multi f2a then just a regular authenticator. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Acidyo on June 22, 2015, 04:51:30 PM There's another Clef article out: http://www.newsbtc.com/2015/06/21/clef-the-bitcoin-of-user-authentication/ Looking into clef now, checking it out on my phone hopefully we could get more sites to use multi f2a then just a regular authenticator. Clef is amazing, I have had the chance to use it on a site they just partnered up with - www.ToshiDesk.com/beta - It's hassle free to say the least, no need to remember my passwords anymore. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: Aldekein on July 01, 2015, 05:13:15 AM Instead of using passwords and seeds (which need to be stored centrally and can be stolen), Clef uses public-key crypto to log users in. That means that most hacks against a Clef-protected account are completely impossible (you can see more at getclef.com/security). If Clef is hacked, we only have the public keys and so there’s nothing for an attacker to steal or use against the user. No need to grab public keys, this part is attack-resistant. But if Clef server is hacked and the OAuth code on Clef side is changed by attacker then the he would have a possibility to log into ALL of the integrated sites until the breach is closed. With a good planned and scripted attack 10 minutes would be enough to steal millions from those who rely solely on confirmation from Clef to find out user identity. Title: Re: [ANN] Clef is secure two-factor authentication with no passwords or tokens Post by: hnin on July 21, 2015, 02:07:00 PM Spells of Genesis & CLEF Discover "Clef, Warden of Wanders"
DISTRIBUTION CHART
|
