I was traveling this week and had an interesting encounter.

The first leg of my flight was delayed, and I was going to miss my connection. I was rebooked on another airline, and I went to the desk to get my boarding pass. Since the booking was just made, I wasn’t able to self-check-in at the kiosk. The terminals behind the desk were all being used, and an airline representative was kind enough to step out and offer some help.

So get this… she taps three times on the touchscreen near this particular airline’s logo. She is presented with a login prompt, and the kiosk displays a full touchscreen keyboard. She enters a 4 digit number (which wasn’t masked). Then she’s prompted for the password. She types in a 6 character password that was quite easy to “shoulder surf” given the size of the keyboard and the fact that the letters are animated when touched.

And I think I know the name of one of her pets. Or the street she lives on.

Anyway, on the screen, a full-featured GUI is presented. She mentioned that she is able to do all the things that they normally do behind the desk via this interface. Rebookings, upgrades… it was all there. Amazing! Of course, I joked with her about putting me in for an upgrade, but considering it was a 50 minute flight, it really wouldn’t be worth it.

Anyway…. very interesting stuff. Who, besides Johnny Long, would have thought?!?

There is a new FIPS 140 Testing Laboratory: ACTL: authsec Conformance Testing Laboratory. This brings the total to 14 labs.

With the NIST queue for review standing at about 5 months, I do wish NIST would enlist the help of the labs to assist with the validation component. The increased timeline has been quite frustrating for our customers, and I’m working up a proposal for an operations plan to help NIST with this issue.

A customer poked fun at me for not updating the blog as often as in the past. Of course, he was just kidding because he knows how busy we’ve been, but I did promise an update. So here goes.

This story requires two inputs:

1. My two year old daughter loves Dr. Seuss’ Hop on Pop, and we read it together about a week ago.
2. I talk in my sleep. Weird, random, and usually coherent streams of unconsciousness pour out uncontrollably (and usually quite humorously).

This morning my wife asked, “Do you remember what you said last night?” That question is usually followed by the most intense feeling of nervous anticipation you can imagine.

Well, apparently I quoted about 1/4 of Hop on Pop. Really quickly. Then I followed with, “Of course, I’m not reading this. I’m just reciting it.”

So what’s this have to do with security?

Nothing. But it’s pretty darn funny.

Consider the blog updated.