Beefy Boxes and Bandwidth Generously Provided by pair Networks
Keep It Simple, Stupid
 
PerlMonks  

Re: OTP (S/Key) implementation using just numbers

by jeroenes (Priest)
on Jun 13, 2001 at 18:45 UTC ( #88069=note: print w/replies, xml ) Need Help??


in reply to OTP (S/Key) implementation using just numbers

A few comments:
  1. OTP may not be secure if you use small 'pads' or numbers (like less than 1000 chars). Weigh security against userfriendliness. PGP can compensate for too small info.
  2. I don't think I have to mention that security is as strong as the weakest link, but just to be sure.
  3. Chars are easy to convert to numbers, eg see CGIPack.
  4. Or if you have 8 chars in the 0-255 ASCII range, just use pack/unpack once (quad integer, 64 bit platforms) or twice (long integer). If you have an 8-digit integer, short is enough.

Hope this helps,

Jeroen
"We are not alone"(FZ)

  • Comment on Re: OTP (S/Key) implementation using just numbers

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://88069]
help
Chatterbox?
[ambrus]: you can also try to just post again in case it was some intermittent error
[mz2255]: Tried again, denied. Maybe my code is just so bad the site refuses to post it.
[marto]: no, there's a bug, sometimes...
[mz2255]: ok, well thanks for looking into it. I'll try again later.

How do I use this? | Other CB clients
Other Users?
Others studying the Monastery: (14)
As of 2017-10-19 15:38 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    My fridge is mostly full of:

















    Results (255 votes). Check out past polls.

    Notices?