On Apr 7, 2014, at 7:01 AM, Stephen Farrell <stephen.farrell@xxxxxxxxx> wrote: > Yes, we ought move away from passwords if/when we ever find an > acceptably better solution, and yes, people ought manage their > passwords well, but neither are today's reality more's the pity. Perhaps it would be worth setting up support for client certs as a way to log in to IETF services. If we won't start, why would someone else?