Yubikey is usb powered piece of hardware with one action button to generate OTP (one time passwords).
Main advantages:
- There is no need to remember credentials for different sites on the web. Just plug in the yubikey and press action button which will create random OTP password with unique header number of that particular yubikey.
- It will guarantee user inviolability and thus disable fishing attacks and credential information interception.
Main disadvantages:
- You have to carry it with you :), but you can access your web portals without using it in old fashion way by typing your credentials.
Settings things up:
You need to register your account at KeyGenius:
http://kg.yubico.com/
You can use basic or standard account type. Basic will not ask you for any password when logging and all you need is one touch on your yubikey for every login on the web. You are released of typing. Standard account is more secure. It will ask you on first access for your KeyGenius credentials, and after supplying it you can use yubikey like in basic account for every other portal on the web.
Under your account you need to supply information like username, passsword and domain for every domain and credential information.
So it's like this. You want to login on e.g. facebook.com. You will open facebook in browser. Your username will be remembered by your browser. Instead of typing passwords you plug your yubikey and touch button. Login process will continue automatically. First it will send request to KeyGenius to return real password for facebook and after receiving password browser will log you to facebook.
Browser will need to know how to get password from KeyGenius. That is accomplished with java script which can be installed to browser using GreasyMonkey addon. Script can be found here:
http://kg.yubico.com/keygenius.user.js
And thats it. Enjoy your safe browsing... :)
No comments:
Post a Comment