Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 2:40 pm

All times are UTC + 1 hour




Post new topic Reply to topic  [ 3 posts ] 
Author Message
PostPosted: Tue Jul 15, 2014 5:38 am 
Offline
User avatar

Joined: Mon Dec 30, 2013 8:04 am
Posts: 8
Hi!

Forgive me if this has been asked before, but I'm short on time and need a quick answer.

Is there any option in avalible software to allow Windows login based only on the first 12 characters in the OTP?

I understand that there is a login tool for challenge and response mode.
But that takes up one slot on my yubikeys and those are both busy.

Ofcourse that does not provide the security of a challenge response or the that of the OTP.
But it's still better than the simple passwords we use today, atleast it won't be as easy as looking over someone's shoulder.

Is there any software for that?


Top
 Profile  
Reply with quote  

Share On:

Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

PostPosted: Thu Jul 17, 2014 6:38 am 
Offline
Site Admin
Site Admin

Joined: Wed Nov 14, 2012 2:59 pm
Posts: 666
That solution would not be secure, unless it uses the full OTP and validates against the Yubicloud.

However, you can use the tool posted in this forum under the project section called "yubikey monitor"

it is not secure, but it will protect you against you family members/friends (if the are not erudite in science) using the Yubikey serial number.

Tom.

_________________
-Tom


Top
 Profile  
Reply with quote  
PostPosted: Thu Jul 24, 2014 11:39 am 
Offline
User avatar

Joined: Mon Dec 30, 2013 8:04 am
Posts: 8
I understad, that does not validate against the 12 in OTP but rather the keys serial.
It may be fine, will definently check it out.

Well I agree, it's not secure.
But neither are Windows-passwords, unless using user accounts in a domain, windows-passwords are stored locally and easily cracked with OphCrack or a similar utility.

I don't consider Windows passwords to be any sercurity at all, since they can easily be decrypted.
They are however good for keeping away unwanted people from your workstation.

However using windows passwords makes for little security and a minor inconvenience.
I would like to eliminate that incovenience totally, by for example integrating my yubikey.
Maybe even using a NFC reader ;)

Best would be some BTLE solution, but that requireres harware support though.

Tried FastAccess, facial recognition, worked great but is way to expensive for what i does.
25$ is too expensive for a so small problem.


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 3 posts ] 

All times are UTC + 1 hour


Who is online

Users browsing this forum: Heise IT-Markt [Crawler] and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group