Re: Asymetric keys

2009-04-20T11:26:12+01:00

Please refer to the following forum post for more information on the use of the asymmetric AES keys:

viewtopic.php?f=2&t=68&p=120#p120

Statistics: Posted by network-marvels — Mon Apr 20, 2009 11:26 am

Asymetric keys

2009-04-19T21:55:06+01:00

Hi, from what I understand YubiKey uses symetric encryption - the YubiKey device contains the AES key which is used to encrypt the OTP information and the server that authenticates the request must have the same AES key.

Wouldn't it be better if asymetric keys were used? In this case the YubiKey device contains it's private key and the public key of the authentication server and then the server would contain only the public key of the YubiKey device.

Wouldn't this be more secure?

Statistics: Posted by hacho — Sun Apr 19, 2009 9:55 pm

Yubico Forum

Re: Asymetric keys

Asymetric keys