Re: USB Tokens

• Previous message: kdillard@prismnet.com: "Re: SMB Brute Force"
• In reply to: Remo Inverardi: "Re: USB Tokens"
• Next in thread: Alan J. Raveling: "Re: USB Tokens"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Justin Derry" <jderry@bordertechnologies.com>
To: "Remo Inverardi" <invi@your.toilet.ch>
Date: Wed, 26 Mar 2003 13:14:05 +1000

Remo,
thanks for the reply.. Thats exactly what i am attempting to achieve.
However if you consider that then to access the laptop they will need the
laptop and the token to use it.
Overall i know this doesn't offer huge security but would mean you need to
the token to use the laptop.

I would be using a standard USB disk/memort key. Not cryptographic such as
the rainbow/ikeys.
Any ideas.
Justin
----- Original Message -----
From: "Remo Inverardi" <invi@your.toilet.ch>
To: "Justin Derry" <jderry@bordertechnologies.com>
Cc: <focus-ms@securityfocus.com>
Sent: Wednesday, March 26, 2003 4:46 AM
Subject: Re: USB Tokens

> Justin,
>
> > Thoughts?
>
> It's not the certificate that gives you security. It's the private key,
> which has to be kept secret somewhere.
>
> Smartcards (like the Aladdin eToken you mentioned), store the private
> key in a safe place, which is not readable from the outside. Once you
> authenticated yourself with the smartcard, which is normally done by
> sending it your PIN, the smartcard can perform private key operations
> for you (which is why it's called "smart"-card).
>
> If you think about it, your approach does not give you more security
> than simply storing your NT domain password on your USB token.
>
> Regards, Remo
>
>

----------------------------------------------------------------------
Get serious about enterprise anti-spam management.
SurfControl E-mail Filter for SMTP & Exchange
leverages multiple layers of technology to defeat
spam with accuracy. Download a free 30-day trial:
http://www.surfcontrol.com/go/zsfmsl1

• Previous message: kdillard@prismnet.com: "Re: SMB Brute Force"
• In reply to: Remo Inverardi: "Re: USB Tokens"
• Next in thread: Alan J. Raveling: "Re: USB Tokens"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Cannot decrypt files on XP ... First make sure you are importing via a .pfx file that would be password ... protected to protect the private key. ... > When I need to travel or otherwise expose my laptop to theft, ... (microsoft.public.windowsxp.security_admin) ssh pubkey validation ... I'd like to be able to have the same ssh identity (private key) on my ... main PC and my laptop for convenience accessing things like the public ... (uk.comp.os.linux) Re: Can Windows be pointed to other locations for private keys? ... > I am not a programmer, but doing some searches, it seems ... the certificate's corresponding private key is stored. ... as smartcards and USB tokens. ... EFS requires Microsoft's own CSPs, ... (microsoft.public.platformsdk.security) Re: 2000 encryption and sharing? ... Keep a copy of your private key on a floppy for safe keeping in case ... are on your laptop, that your data is vulnerable if your laptop ... > encryption is there a way to share those files and work with them from ... > I regularly transfer data files back and forth from my notebook and desktop. ... (microsoft.public.win2000.security) Verbindung zu Netzwerkordnern herstellen ... Seit heute habe ich das Problem, das ich von meinem Laptop ... Es erscheint der Fehler, dass die Smartcard verkehrt herum ... Zwar verfügt der Laptop über einen ... (microsoft.public.de.german.windowsxp.networking)