undefined | Better HN

0 pointstptacek8d ago0 comments

You either reissue tokens constantly, every couple minutes or so, or you have to reliably invalidate.

0 comments

3 comments · 1 top-level

tasuki8d ago· 2 in thread

Maybe you do. Why would I have to do that?

Because it's bad to ship products where a compromised token can never be recovered from. Revocation is the essential hard problem in authentication/authorization.

tasuki7d ago

I guess I just can't see the actual path here. How does a token get compromised in a way the victim finds out before the attacker makes ample use of the compromised token? From my pov, when the token gets compromised, you've lost already.

Note the auth systems I create usually do not process payment info and contain very little personal information (an email). I still think I'm fine without revocation mechanisms.

j / k navigate · click thread line to collapse