Beefy Boxes and Bandwidth Generously Provided by pair Networks
Keep It Simple, Stupid

Re: OTP (S/Key) implementation using just numbers

by jeroenes (Priest)
on Jun 13, 2001 at 18:45 UTC ( #88069=note: print w/replies, xml ) Need Help??

in reply to OTP (S/Key) implementation using just numbers

A few comments:
  1. OTP may not be secure if you use small 'pads' or numbers (like less than 1000 chars). Weigh security against userfriendliness. PGP can compensate for too small info.
  2. I don't think I have to mention that security is as strong as the weakest link, but just to be sure.
  3. Chars are easy to convert to numbers, eg see CGIPack.
  4. Or if you have 8 chars in the 0-255 ASCII range, just use pack/unpack once (quad integer, 64 bit platforms) or twice (long integer). If you have an 8-digit integer, short is enough.

Hope this helps,

"We are not alone"(FZ)

  • Comment on Re: OTP (S/Key) implementation using just numbers

Log In?

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://88069]
NodeReaper serves mincemeat tarts with the cider

How do I use this? | Other CB clients
Other Users?
Others surveying the Monastery: (4)
As of 2018-04-22 03:18 GMT
Find Nodes?
    Voting Booth?