[TriLUG] OT: RSA Securid - how does it work?
Tim Jowers
timjowers at gmail.com
Sun Mar 9 23:20:12 EDT 2008
Who woulda thought these were worth 2.1B? EMC.
http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1196915,00.html
Maxim and others make random number chips like this it seems:
http://www.maxim-ic.com/quick_view2.cfm/qv_pk/5352
TimJowers
On Sun, Mar 9, 2008 at 10:21 PM, David Black <dave at jamsoft.com> wrote:
> Joseph Mack NA3T wrote:
>
> > In principle I expect the one I have from work would do, for
> > any vendor, except that ebay would have to have some proof
>
> Each batch of tokens ships with a "seed file" to be installed on the
> server. That file allows the server to compute the code the token
> should be showing at a given time, for a range of token serial numbers.
> RSA/Verisign is adamant about knowing exactly who has a seed file and
> given set of tokens, and where they are. (My experience when ordering
> from them.)
>
> These things add up to make me think re-using a token outside a single
> server cluster, let alone among multiple vendors, just isn't going to
> happen - at least with the SecurID system.
>
> Dave
>
> --
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
>
More information about the TriLUG
mailing list