http://itsecpackets.com/blog/2008/06/01/my-yubikey-implementation/ A Progammer explores the IT Security field; offering packets of useful information he picks up along the way. Sat, 22 Nov 2008 22:05:12 +0000 http://wordpress.org/?v=2.5.1 http://itsecpackets.com/blog/2008/06/01/my-yubikey-implementation/#comment-138 legind Mon, 28 Jul 2008 19:56:04 +0000 http://www.itsecpackets.com/blog/2008/06/01/my-yubikey-implementation/#comment-138 A great post, this has been very helpful in my implementation of the yubikey PHP class. I do have a bit of a correction, however. The yubikey, to my understanding, uses symmetric shared-key encryption, rather than using the asymmetric public/private key model. This is still secure, because there is nothing you can do to induce your yubikey to spit out the key, which is only shared under lock-and-key over at the yubico server side. Yubico has opted for symmetric encryption because of simplicity - as explained in this post: http://forum.yubico.com/viewtopic.php?f=6&t=21 As Steve Gibson notes in episode 154 of Security Now, the computation power of the yubikey would have to be much greater in order to get asymmetrically encrypted text out of it, which isn't really feasible. A great post, this has been very helpful in my implementation of the yubikey PHP class. I do have a bit of a correction, however. The yubikey, to my understanding, uses symmetric shared-key encryption, rather than using the asymmetric public/private key model. This is still secure, because there is nothing you can do to induce your yubikey to spit out the key, which is only shared under lock-and-key over at the yubico server side. Yubico has opted for symmetric encryption because of simplicity - as explained in this post: http://forum.yubico.com/viewtopic.php?f=6&t=21 As Steve Gibson notes in episode 154 of Security Now, the computation power of the yubikey would have to be much greater in order to get asymmetrically encrypted text out of it, which isn’t really feasible.

]]> http://itsecpackets.com/blog/2008/06/01/my-yubikey-implementation/#comment-71 Paul Simon Thu, 10 Jul 2008 06:13:26 +0000 http://www.itsecpackets.com/blog/2008/06/01/my-yubikey-implementation/#comment-71 Very cool, I'm also planning to use Yubikey as a voting mechanism on my rating site. I heard the price will come down as the production volume grows up quickly. Very cool, I’m also planning to use Yubikey as a voting mechanism on my rating site. I heard the price will come down as the production volume grows up quickly.

]]> http://itsecpackets.com/blog/2008/06/01/my-yubikey-implementation/#comment-39 ITSec Packets | RSA 2008 and Yubikey Fri, 06 Jun 2008 00:11:13 +0000 http://www.itsecpackets.com/blog/2008/06/01/my-yubikey-implementation/#comment-39 [...] post on my Yubico [...] [...] post on my Yubico [...]

]]>