User: Password:
|
|
Subscribe / Log in / New account

Fedora accepting YubiKey one-time passwords

Fedora accepting YubiKey one-time passwords

Posted Oct 15, 2010 10:46 UTC (Fri) by rwmj (subscriber, #5474)
Parent article: Fedora accepting YubiKey one-time passwords

It works really well for me:

http://rwmj.wordpress.com/tag/yubikey/

Now if only I could persuade my bank to use a OTP / secure key setup instead of the completely useless (and *actively* insecure) "Verified by Visa" system.


(Log in to post comments)

Fedora accepting YubiKey one-time passwords

Posted Oct 17, 2010 7:11 UTC (Sun) by sitaram (guest, #5959) [Link]

For people wishing they could use this for banking, this sort of device cannot prevent a complete MITM attack. Bruce Schneier is fond of saying that the server must validate the *transaction*, not the user. Yubikey can't do that because it can't incorporate any transaction info in the generated output.

The problem with doing that is form factor. The most convenient I have read about so far is the EMUE card -- haven't seen it in action anywhere, but it looks nice, and I'm sure there are others like it.


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds