Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 7:19 pm

All times are UTC + 1 hour




Post new topic Reply to topic  [ 1 post ] 
Author Message
PostPosted: Wed Nov 17, 2010 4:07 pm 
Offline

Joined: Wed Nov 17, 2010 1:08 pm
Posts: 1
A lot of people have asked about the ability to support multiple or backup Yubikeys. This is actually trivial to do, requiring only a tiny change in the servers and no change in the clients. Simply change the validation servers to track the insertion and OTP counters on a per-private-ID basis.

Then, you could program multiple Yubikeys with the same public ID and AES key but different private IDs. This would permit a simple backup/spare Yubikey mechanism. You could have one on your keychain, one at home, one at the office, and so on.

The personalization tool could easily be modified to allow you to insert any number of Yubikeys and it would simply program each one with a different private ID.

If you want to get fancy, a web page could be provided to associate a 'nickname' with each Yubikey. You just insert a Yubikey, generate an OTP, and enter a nickname, like 'Office' or 'Keychain'. The web interface could permit a lost Yubikey to be disabled simply by bumping the counter for that private ID to the maximum permissible value. (No OTP with a greater count than that can possibly be generated.)


Top
 Profile  
Reply with quote  

Share On:

Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 1 post ] 

All times are UTC + 1 hour


Who is online

Users browsing this forum: No registered users and 7 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group