[ANN] Clef is secure two-factor authentication with no passwords or tokens - page 7.

fordlincoln

full member

Activity: 152

Merit: 100

Quote from: sidhujag on March 10, 2015, 01:09:45 AM

Quote from: deepbtc on March 10, 2015, 12:46:10 AM

I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch.

Exchanges are a thing of the past.. Only scammers do them noone will trsut you

are you serious? you're saying auctions are better then, as you are promoting an auction in your signature and yet bashing exchanges. This is unrelated to the thread topic anyways.

oraclechain

newbie

Activity: 5

Merit: 0

Quote from: deepbtc on March 10, 2015, 12:46:10 AM

I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch.

Thats a great ida

sidhujag

legendary

Activity: 2044

Merit: 1005

Quote from: deepbtc on March 10, 2015, 12:46:10 AM

I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch.

Exchanges are a thing of the past.. Only scammers do them noone will trsut you

deepbtc

newbie

Activity: 50

Merit: 0

I'm thinking about integrating Clef with a bitcoin exchance i'm going to launch.

fordlincoln

full member

Activity: 152

Merit: 100

Quote from: ikydesu on March 08, 2015, 03:11:31 PM

This is incredible security project which recently the security is most important for all website service. I hope it will implemente to exchanger bitcoin which a susceptible from hacking attack.

~iki

I believe the Clef team is actively interested in working with Bitcoin Exchanges, if you know of any please post here

starsoccer9

legendary

Activity: 1630

Merit: 1000

Quote from: true-asset on March 09, 2015, 03:32:58 PM

I think the OP needs to outline the business model of Clef. How do you guys pay for all the servers and bandwidth? How do you guys pay for the technical and support staff?

I am not sure that really matters much. I understand being curious, but asking how the business runs and covers costs is kinda for them to figure out.
In any case tho, Clef does have tiers for companies to pay for implementation as well as support.

fordlincoln

full member

Activity: 152

Merit: 100

Quote from: true-asset on March 09, 2015, 03:32:58 PM

I think the OP needs to outline the business model of Clef. How do you guys pay for all the servers and bandwidth? How do you guys pay for the technical and support staff?

“Clef, an Oakland-based two-factor authentication solution that uses Apple’s fingerprint reader rather than passwords, has raised $1.6 million in seed funding from Morado Ventures and individual angel investors. www.getclef.com”
http://fortune.com/2014/11/19/term-sheet-nov-19/

true-asset

sr. member

Activity: 252

Merit: 250

Uro: 1 URO = 1 metric tonne of Urea N46 fertilizer

I think the OP needs to outline the business model of Clef. How do you guys pay for all the servers and bandwidth? How do you guys pay for the technical and support staff?

ikydesu

hero member

Activity: 686

Merit: 500

fb.com/Bitky.shop | Bitcoin Merch!Premium Quality!

This is incredible security project which recently the security is most important for all website service. I hope it will implemente to exchanger bitcoin which a susceptible from hacking attack.

~iki

Clef

newbie

Activity: 54

Merit: 0

Clef

newbie

Activity: 54

Merit: 0

Clef Announces True Logins: the first tool to protect against phishing attacks

True Logins add a simple check when you log into a new computer.
After you sync the Wave, Clef temporarily redirects you to a safe site and your phone asks a simple question to confirm you’re in the right place.
If anything is suspicious, Clef cancels the login and sends you to getclef.com where we can be sure you aren’t being phished.
Otherwise, you’re logged in like normal and we remember the computer so you only have to do the extra step once.

Check out our blog post for more details.

oraclechain

newbie

Activity: 5

Merit: 0

Clef wave needs to be synced to complete the OAuth at the redirect URL which means that the cryptographic handshake never happens on Clef.

http://docs.getclef.com/v1.0/docs/authenticating-users

fordlincoln

full member

Activity: 152

Merit: 100

Quote from: sidhujag on March 01, 2015, 03:26:29 PM

Quote from: fordlincoln on March 01, 2015, 03:22:45 PM

Quote from: sidhujag on March 01, 2015, 09:22:47 AM

Quote from: Cryptowatch.com on March 01, 2015, 02:18:20 AM

Quote from: sidhujag on March 01, 2015, 02:13:06 AM

Quote from: starsoccer9 on February 26, 2015, 03:05:55 PM

Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy.

Bitstamp would need to add the clef plugin.. And trust the central server...

Can this not be done trustlessly? I mean we are on bitcointalk right?

Any 2FA system should be trustless and open source.

i dont think this one is

Not every 2FA system is trustless nor open source. Google Auth and Authy are certainly not.

Clef documentation outlines they don't hold any private keys. The private key is kept on your phone and only the public key is shared with the Clef server to authenticate the OAuth handshake.

http://docs.getclef.com/v1.0/docs/authenticating-users

So they can lure in open source projects and then jack the rates up at will or sell information they gather to seo's? Ya sure

Lure in open source projects? Not sure where that came from as it's purely a 2FA alternative to whats already out there. Atleast they don't share your information without permission.

It's free for users unless you're a website owner.
They get usage analytics -

Projects in Bitcoin that are using it currently:
Koinify.com
Betmoose.com

"Clef does not share personally identifiable information with third parties without your permission. When you register at a new site that integrates Clef, we will notify you of what information the site requires and you must give permission in order for us to share it. Once you approve, the other site owns that information and we are not responsible for their use.

Clef does not sell, rent, or lease its customer lists to third parties.

Clef keeps track of websites users log in to using Clef. Any information you provide on those sites is shared with the owner of that site and subject to their privacy policy. Our privacy policy does not apply to such sites, and we are not responsible for the content or privacy and security practices and/or policies of those sites."
https://getclef.com/privacy/

sidhujag

legendary

Activity: 2044

Merit: 1005

Quote from: fordlincoln on March 01, 2015, 03:22:45 PM

Quote from: sidhujag on March 01, 2015, 09:22:47 AM

Quote from: Cryptowatch.com on March 01, 2015, 02:18:20 AM

Quote from: sidhujag on March 01, 2015, 02:13:06 AM

Quote from: starsoccer9 on February 26, 2015, 03:05:55 PM

Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy.

Bitstamp would need to add the clef plugin.. And trust the central server...

Can this not be done trustlessly? I mean we are on bitcointalk right?

Any 2FA system should be trustless and open source.

i dont think this one is

Not every 2FA system is trustless nor open source. Google Auth and Authy are certainly not.

Clef documentation outlines they don't hold any private keys. The private key is kept on your phone and only the public key is shared with the Clef server to authenticate the OAuth handshake.

http://docs.getclef.com/v1.0/docs/authenticating-users

So they can lure in open source projects and then jack the rates up at will or sell information they gather to seo's? Ya sure

fordlincoln

full member

Activity: 152

Merit: 100

Quote from: sidhujag on March 01, 2015, 09:22:47 AM

Quote from: Cryptowatch.com on March 01, 2015, 02:18:20 AM

Quote from: sidhujag on March 01, 2015, 02:13:06 AM

Quote from: starsoccer9 on February 26, 2015, 03:05:55 PM

Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy.

Bitstamp would need to add the clef plugin.. And trust the central server...

Can this not be done trustlessly? I mean we are on bitcointalk right?

Any 2FA system should be trustless and open source.

i dont think this one is

Not every 2FA system is trustless nor open source. Google Auth and Authy are certainly not.

Clef documentation outlines they don't hold any private keys. The private key is kept on your phone and only the public key is shared with the Clef server to authenticate the OAuth handshake.

http://docs.getclef.com/v1.0/docs/authenticating-users

sidhujag

legendary

Activity: 2044

Merit: 1005

Quote from: Cryptowatch.com on March 01, 2015, 02:18:20 AM

Quote from: sidhujag on March 01, 2015, 02:13:06 AM

Quote from: starsoccer9 on February 26, 2015, 03:05:55 PM

Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy.

Bitstamp would need to add the clef plugin.. And trust the central server...

Can this not be done trustlessly? I mean we are on bitcointalk right?

Any 2FA system should be trustless and open source.

i dont think this one is

Cryptowatch.com

full member

Activity: 196

Merit: 103

Quote from: sidhujag on March 01, 2015, 02:13:06 AM

Quote from: starsoccer9 on February 26, 2015, 03:05:55 PM

Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy.

Bitstamp would need to add the clef plugin.. And trust the central server...

Can this not be done trustlessly? I mean we are on bitcointalk right?

Any 2FA system should be trustless and open source.

sidhujag

legendary

Activity: 2044

Merit: 1005

Quote from: starsoccer9 on February 26, 2015, 03:05:55 PM

Clef makes it easy to replace passwords. For example rather then going to login to bitstamp with your username, password, and then 2fa, you can just login using your phone. It is quick and easy.

Bitstamp would need to add the clef plugin.. And trust the central server...

Can this not be done trustlessly? I mean we are on bitcointalk right?

YESConnie

newbie

Activity: 8

Merit: 0

Quote from: Cryptowatch.com on February 27, 2015, 01:57:50 AM

Very interesting. Will definately look closer into this. Don't like the fingerprint idea, but I see there's alternatives to that which is good.

Any plans for supporting jolla phones?

Yeah, Clef feels very different than other 2FAs (but in a great way). I'm interested in seeing the growth and expansion of it on many different sites.

fordlincoln

full member

Activity: 152

Merit: 100

Interesting - didnt hear about Jolla phones before this but found that they use Sailfish OS:

"Sailfish OS has the in-built capability to run Android™ apps on your Jolla. So you can continue using your favourite apps like Instagram, Facebook, WhatsApp and Twitter as well as downloading all the latest ones via the Yandex and Aptoide Stores and other Android™ marketplaces."

As the Clef app is on Android, it would appear to work on Jolla - curious about this, please post here if this works for you

Topic: [ANN] Clef is secure two-factor authentication with no passwords or tokens - page 7. (Read 15221 times)