How PayPal Will Fight Phishing and Password Cracking
Mon Jan 22, 2007 5:52PM EST
See Comments (6)
I've done a couple of posts lately about password cracking and online security, and in your emails and comments I can hear your frustration: What is being done about this online epidemic?
Well, PayPal (one of the most heavily-targeted financial websites) is finally taking steps in the right direction, with a hardware security key that makes cracking your account next to impossible.
Often called security tokens, a security key is a small piece of hardware that's designed to be carried with you at all times (typically on a keychain). The device does nothing except generate a different six-digit number every 30 seconds. There's no way to predict the number at any given time, which is generated by an algorithm on both the key itself and by a matching algorithm on PayPal's servers.
Now here's the trick: If you have the security key (pictured), when you visit paypal.com you're asked for the usual user name and password as well as the six digits displaying on the security key at the moment you login. Assuming your password is also good, if the six digits you type match those that PayPal has generated, you're in.
Many businesses already use these keys for remote access, so you might be familiar with how they work. This is exactly the same premise, providing an extra layer of security that only the bearer of the security token knows. If you want to obtain the PayPal Security Key, it will be available later this year (an exact date is undetermined), but you can keep tabs on it here. The keys are optional and will cost $5. Infoworld has more details.
I have to say this is great news, and I'll probably sign up since I get several PayPal phishing emails every day, but security keys don't scale. If I have even six critical online accounts, that's a lot of hunks of plastic on my keychain. At the same time, a centralized version of this technology probably wouldn't work.
For now, though, this is a step in the right direction. Anyone have any better ideas for the future?
Top 5 Posts
More About Services
Comments on 4th of July fireworks photography tips
Post a Comment
Join in the discussion. Here you'll see the comments in the order they were posted.
-
2 Posted by alexgannis on Wed Jun 24, 2009 7:45PM EDT Report Abuse
You're 100% correct thanks, I made some great shot last year on my Canon 40D ISO 100 bulb setting. bulb is not a fla----- s a setting in pro camera manuel mode.
-
3 Posted by lubbcraig on Thu Jun 25, 2009 7:17AM EDT Report Abuse
i guess this is a yearly post for you eh? XD
-
4 Posted by rogueist on Thu Jun 25, 2009 9:20AM EDT Report Abuse
You forgot the most important tip - dont stand over the fireworks expecting to catch a firecracker (or M80) exploding on the ground, or a bottle rocket or roman candle as they launch.
-
5 Posted by gullwingdoors on Thu Jun 25, 2009 10:13AM EDT Report Abuse
Good article. I think I'll try some of this stuff with my A590IS. Another tip for those whose camera does not have those settings, if it is a Cannon, try the CHDK firmware. http://chdk.wikia.com/wiki/CHDK It adds a ton of extra features including the ones mentioned in this article (rapid fire, long exposures, etc).
Sponsored Links
My Tech
Please enable your browser's cookies to activate the My Tech column.
Also on Yahoo! Tech
| Computers | Home Office | Wi-Fi & Networking | Phones & PDAs | Cameras & Camcorders | TV & Home Theater | Portable Audio |
|---|---|---|---|---|---|---|
1 Posted by pb_enial on Wed Jun 24, 2009 5:15PM EDT Report Abuse
Thanks for the tip. Just bought a Canon A480.