Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Ok… Thought they would’ve already done this by now.


I have worked for some big tech companies that don't bother to use YubiKeys or hardware tokens for some of their most security-critical systems.


Case in point: Microsoft recently losing a critical signing key that definitely wasn't in an HSM.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: