Yubico Forum ...visit our web-store at 2013-06-11T07:40:58+01:00 https://forum.yubico.com/feed.php?f=16&t=1076 2013-06-11T07:40:58+01:00 2013-06-11T07:40:58+01:00 https://forum.yubico.com/viewtopic.php?t=1076&p=4042#p4042 <![CDATA[Re: [QUESTION]Is there any way to make the OTP predictable?]]> http://www.yubico.com/wp-content/upload ... l-v3_1.pdf

With an end-user Yubikey is not doable.

Statistics: Posted by Tom — Tue Jun 11, 2013 7:40 am

]]> 2013-06-06T14:26:29+01:00 2013-06-06T14:26:29+01:00 https://forum.yubico.com/viewtopic.php?t=1076&p=4025#p4025 <![CDATA[Re: [QUESTION]Is there any way to make the OTP predictable?]]> Statistics: Posted by mtassinari — Thu Jun 06, 2013 2:26 pm

]]> 2013-06-01T10:46:34+01:00 2013-06-01T10:46:34+01:00 https://forum.yubico.com/viewtopic.php?t=1076&p=4014#p4014 <![CDATA[[QUESTION]Is there any way to make the OTP predictable?]]>
I know this might sound like it reduces the security of the YubiKey somewhat. But is there a way to configure it so that if you know the key added to the Yubikey during personalisation you can predict the exact OTP's it will generate? i.e. is there are way to disable the session counter and timing elements of the OTP?

So if Alice setups a Yubikey and sends its to Bob. She will know the string generated each time Bob presses the button. I have a use case in mind that relies on knowing the sequence that will be generated, rather than validating the OTPs in the traditional way.

Thanks,

Charlie M

Statistics: Posted by charliem — Sat Jun 01, 2013 10:46 am

]]>