More than anything, companies need to do what we did at cisco: use an electronic one-time pad that you carry with you at all times. Every password you ever use is “burned” as soon as you use it.
Employees have to keep the OTP card with them at all times, lest they not be able to log into anything.
Other than that inconvenience, it works pretty well.
Interesting policy as long as the randomness is assured.
I’m not familiar with that...is that like the RSA number generator?
Is that more secure than smart cards with pins?
But even so how does it prevent backdoor attacks? Are you saying all data is uniquely encrypted so that only the user who wrote it can read it...even if on a server?