Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 11:48 am

All times are UTC + 1 hour




Post new topic Reply to topic  [ 2 posts ] 
Author Message
PostPosted: Sat Mar 13, 2010 11:08 am 
Offline

Joined: Tue Mar 02, 2010 5:24 pm
Posts: 2
Let's say I setup a dedicated server that will only be running ksm (AES key storage). I don't want to run a validation server. Can Yubico validation server be used and linked to this remote KSM so I can access websites using Yubico API?

Thanks
Alphazo


Top
 Profile  
Reply with quote  

Share On:

Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

PostPosted: Mon Mar 15, 2010 4:04 pm 
Offline
Site Admin
Site Admin

Joined: Tue May 06, 2008 7:22 pm
Posts: 151
alphazo wrote:
Let's say I setup a dedicated server that will only be running ksm (AES key storage). I don't want to run a validation server. Can Yubico validation server be used and linked to this remote KSM so I can access websites using Yubico API?


Hi!

As you may have noticed, the architecture supports this, but we have no ready processes around this and not even any business decisions whether to offer this as a service or not. Some more technology needs to be designed to allow customers to easily let us know which KSM to use for which yubikeys, and also make sure that you own those yubikeys. Potentially a customer can "reserve" yubikey prefix (much like we've reserved the '^vv' prefix for customer uploaded AES keys) and setup a KSM for those keys, and then inform Yubico of this somehow.

If you really need this option, and is prepared to pay at least a share of its development, please contact me at simon at yubico.com to discuss further.

Note that you may want to look into alternatives like OpenID & SAML for more vendor-neutral solutions around delegated authentication. Not a complete replacement, but if we are lucky it solves your needs.

/Simon


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 2 posts ] 

All times are UTC + 1 hour


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group