[geeks] Interesting: hardware security token for PayPal
Brian Dunbar
brian.dunbar at liftport.com
Sun Apr 1 11:23:31 CDT 2007
Dan Duncan wrote:
> On 3/31/07, Phil Stracchino <phil.stracchino at speakeasy.net> wrote:
>> This is an interesting-looking gadget from PayPal:
>>
>> https://www.paypal.com/us/cgi-bin/webscr?cmd=xpt/cps/general/PayPalSecurityKey
>>
>> If the device generates a six-digit code "about every 30 seconds", then
>> it takes it "about a year" to exhaust all possible codes and start over.
>
> We use RSA SecurID tokens like this at $WORK. Rumor has it a former
> employee left his at home with a password-protected webcam pointing at it
> so he didn't need to carry it with him. I don't know if that's why
> he's a former
> employee. Of course, it's just a rumor.
>
That's a) really insecure and b) kinda cute. That would not work with
the ones we've got - there is a button to push to light up the LCD.
Hmm hook up a Mindstorm kit to hold the fob in a cradle and push the
button on command ....
--
Brian Dunbar
System Administrator
Liftport - The Space Elevator Company
brian.dunbar at liftport.com
aim: bdunbar1967
GMT -6
this email is: [ ] bloggable [x] ask first [ ] private
Meaningful Work or Death.
Any other form of existence doesn't interest me.
Hugh Macleod
More information about the geeks
mailing list