Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

There are others which aren't listed there, like OVH (the largest European hosting company). The dearth of banks is real though. And sad.

I have only seen client-side certificates used twice. Once at now infamous StartSSL and second at a bank but for vendor access, not regular customers.

Its huge downside is that it's a second factor which doesn't protect against a compromised device.



Client-side certificates are widely used among the Estonian population btw. It's basically the rest of the world that has caused the need for U2F/TOTP because they can't deploy smartcards with certs to users.


There's a wiki page that describes the authentication process in Estonia: https://eid.eesti.ee/index.php/Authenticating_in_web_applica...


> Its huge downside is that it's a second factor which doesn't protect against a compromised device.

That's true, but I think that if people used an encrypted private key (protected by a passphrase), then that would be less of an issue.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: