[Full-Disclosure] One-Time Pad Authentication

[Michael Sierchio]

Jonathan A. Zdziarski wrote:

> I'm interested in coding a one-time pad authentication system; similar
> to SecurID or other types of token authentication only with software
> tokens.  The administrator would generate the one-time pads for each
> user and distribute them using whatever secure method gets coded (PGP,
> SSH, or whatever).  

You've thereby reduced the security of a one-time pad to that of
the cryptologic and protocol used to distribute it.  Simply isn't
done, old chap.

Use:

	trusted courier;
	registered US mail;
	etc.