Re: USB Tokens

Remo,
thanks for the reply.. Thats exactly what i am attempting to achieve. However if you consider that then to access the laptop they will need the laptop and the token to use it.
Overall i know this doesn't offer huge security but would mean you need to the token to use the laptop.

I would be using a standard USB disk/memort key. Not cryptographic such as the rainbow/ikeys.
Any ideas.
Justin
----- Original Message -----
From: "Remo Inverardi" <invi@your.toilet.ch> To: "Justin Derry" <jderry@bordertechnologies.com> Cc: <focus-ms@securityfocus.com>
Sent: Wednesday, March 26, 2003 4:46 AM
Subject: Re: USB Tokens

> Justin,
>
> > Thoughts?
>
> It's not the certificate that gives you security. It's the private key,
> which has to be kept secret somewhere.
>
> Smartcards (like the Aladdin eToken you mentioned), store the private
> key in a safe place, which is not readable from the outside. Once you
> authenticated yourself with the smartcard, which is normally done by
> sending it your PIN, the smartcard can perform private key operations
> for you (which is why it's called "smart"-card).
>
> If you think about it, your approach does not give you more security
> than simply storing your NT domain password on your USB token.
>
> Regards, Remo
>
>