[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Algorithm

To: "cosboys@erols.com" <cosboys@erols.com>
Subject: Re: Algorithm
From: "Jean-Francois Avon" <jf_avon@citenet.net>
Date: Sun, 28 Feb 1999 16:56:33 -0500
Cc: "Cypherpunks" <cypherpunks@toad.com>
Priority: Normal
Reply-To: "Jean-Francois Avon" <jf_avon@citenet.net>
Sender: owner-cypherpunks@toad.com

On Sun, 28 Feb 1999 14:31:43 -0500, cosboys@erols.com wrote:

>When I shoulder surf a technician's PIN, it's only useful for the hour that
>it's being used.

>Then it changes and creates a new one.

>I'm thinking that there is an algorithm based upon this information allowing
>the technicians to calculate it in their heads relatively quickly.

Definitely, if it's prime numbers, just multiply some previous one with 
another base one and you'll get the next...  ROTFL!

No kidding, the best method to obtain a password with a higher permission 
level is to go to your boss and ask for one.  If you have a legitimate use, he 
will give you one no doubts...

There is a wonderfull little thingie called Secure ID: a temper-proof card 
that generates a one-time 10(?) digit password valid only for one minute.  The 
card is sealed and good for a few years.  When the batterie dies, you cannot 
even change it and have to get a new card.

That takes reasonnably care of shoulder surfers like the poster.

Of course, it probably could be hacked, but the type of access it protects is 
probably not worth it.

Ciao

Follow-Ups:
- Re: Algorithm
  - From: Rabid Wombat <wombat@mcfeely.bsfs.org>

Prev by Date: FWD: ZDNN: The biggest security threat: You
Next by Date: Re: cutting your own phone lines is a felony?
Prev by thread: Algorithm
Next by thread: Re: Algorithm
Index(es):
- Date
- Thread