Beefy Boxes and Bandwidth Generously Provided by pair Networks
Perl: the Markov chain saw

Re: OTP (S/Key) implementation using just numbers

by jeroenes (Priest)
on Jun 13, 2001 at 18:45 UTC ( #88069=note: print w/replies, xml ) Need Help??

in reply to OTP (S/Key) implementation using just numbers

A few comments:
  1. OTP may not be secure if you use small 'pads' or numbers (like less than 1000 chars). Weigh security against userfriendliness. PGP can compensate for too small info.
  2. I don't think I have to mention that security is as strong as the weakest link, but just to be sure.
  3. Chars are easy to convert to numbers, eg see CGIPack.
  4. Or if you have 8 chars in the 0-255 ASCII range, just use pack/unpack once (quad integer, 64 bit platforms) or twice (long integer). If you have an 8-digit integer, short is enough.

Hope this helps,

"We are not alone"(FZ)

  • Comment on Re: OTP (S/Key) implementation using just numbers

Log In?

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://88069]
and all is quiet...

How do I use this? | Other CB clients
Other Users?
Others taking refuge in the Monastery: (5)
As of 2018-06-20 12:19 GMT
Find Nodes?
    Voting Booth?
    Should cpanminus be part of the standard Perl release?

    Results (116 votes). Check out past polls.