Yubico Forum https://forum.yubico.com/ |
|
[QUESTION]Yubikey 4 OTP Public Identity Length https://forum.yubico.com/viewtopic.php?f=35&t=2296 |
Page 1 of 1 |
Author: | DOA2016 [ Sun May 01, 2016 12:45 pm ] |
Post subject: | [QUESTION]Yubikey 4 OTP Public Identity Length |
Hello folks, I was in the process of configuring my new YK4 and have a question regarding the OTP public key length. In the personalization tool I can change the length of the Public Identity. The software states that 6 bytes is the default length as required by the Yubico OTP validation server. It does not state whether that is the only length for OTP validation allowed. When I read through the Yubico Personalization Tool manual located at http://www.yubico.com/wp-content/uploads/2016/03/YubiKeyPersonalizationToolUserGuideMarch2016.pdf it states on page 18 of 48 the following; Quote: A Public Identity length of 6 bytes or more is for use with the Yubico validation server architecture or for future extensions. So I changed the public identity length to 16 and went to apply it to slot 1. Now the software states if I change the length to anything other than 6 the OTP validation server will not be able to extract the secret key and validation will fail. Which statement is correct? The one in the manual which allows me to increase the length of the public identity or the software statement? Thanks in advance for any answers you can give me. |
Author: | ChrisHalos [ Sun May 01, 2016 7:13 pm ] |
Post subject: | Re: [QUESTION]Yubikey 4 OTP Public Identity Length |
6 bytes is required for using the YubiCloud (for user-programmed credentials, "vv" followed by any 10 modhex characters). Are you trying to use the YubiCloud, or are you trying to implement your own validation server? |
Author: | DOA2016 [ Mon May 02, 2016 12:27 pm ] |
Post subject: | Re: [QUESTION]Yubikey 4 OTP Public Identity Length |
Hello Chris ChrisHalos wrote: 6 bytes is required for using the YubiCloud (for user-programmed credentials, "vv" followed by any 10 modhex characters). Are you trying to use the YubiCloud, or are you trying to implement your own validation server? So if I understand you correctly the manual is incorrect where it states that the public identity must be 6bytes or More to use with the Yubico validation servers? Thanks DOA |
Author: | Tom2 [ Mon May 02, 2016 3:19 pm ] |
Post subject: | Re: [QUESTION]Yubikey 4 OTP Public Identity Length |
The protocol allows for more the 6 bytes. CC VV public ids will be reserved for YubiCloud and are 6 bytes long (for now) |
Page 1 of 1 | All times are UTC + 1 hour |
Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |