Yubico Forum

Asymetric keys
Page 1 of 1

Author:  hacho [ Sun Apr 19, 2009 9:55 pm ]
Post subject:  Asymetric keys

Hi, from what I understand YubiKey uses symetric encryption - the YubiKey device contains the AES key which is used to encrypt the OTP information and the server that authenticates the request must have the same AES key.

Wouldn't it be better if asymetric keys were used? In this case the YubiKey device contains it's private key and the public key of the authentication server and then the server would contain only the public key of the YubiKey device.

Wouldn't this be more secure?

Author:  network-marvels [ Mon Apr 20, 2009 11:26 am ]
Post subject:  Re: Asymetric keys

Please refer to the following forum post for more information on the use of the asymmetric AES keys:


Page 1 of 1 All times are UTC + 1 hour
Powered by phpBB® Forum Software © phpBB Group