On BNET: Gen Y: Your degree doesn't cut it
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 24 of 34:
Next »
« Previous
Have some of you not even SEEN a smart card?
I'm no expert, but some of you clearly miss how these things work. You still have a password - surely still a "strong" password.

The card doesn't store some user-chosen PIN. Most generate a random and ever-changing number or string. The algorithm for creating that string is defined by the card itself (no two cards give same number at same moment). That card is then linked to your user ID. You log in with your ID, your password, and the smart card string that you just generated.

If you lose the card, a user cannot use it to log in unless he/she also has your ID and password. Once lost, however, you simply call your support team and have your ID unbound from the old card and assigned to a new one. The lost/stolen card is completely useless.

That is oversimplified and the variables and systems integration are unique to vendors, but any option is far different from an ATM card. The only similarity is that you physically have a card and without being in the presence of that card, you aren't getting anywhere.
Posted by: BigHeat   Posted on: 12/09/04 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Any major change in corporate security methods  alterego_z | 12/09/04
The article should have been called 'MS says smart cards are the way' (NT)  Letophoro | 12/09/04
Smart cards? Think "ATM cards"...  Zogg | 12/09/04
Strong Passwords  rpmyers1 | 12/09/04
This is rich...  Yen_z | 12/09/04
Once Again Microsloth Tries To Rule The World  itanalyst | 12/09/04
Good post, bad title  rapson | 12/09/04
Like I said...  John L. Ries | 12/09/04
Humans will ALWAYS be the weakest link.  No_Ax_to_Grind | 12/09/04
Message has been deleted.  itanalyst | 12/09/04
Ah, looking for your first deleted message today?  No_Ax_to_Grind | 12/09/04
Like I Care If It Gets Deleted....  itanalyst | 12/09/04
I understand, no value to your posts.  No_Ax_to_Grind | 12/09/04
Cmon No_Ax, You Know Me Better Than That  itanalyst | 12/09/04
Doubtful  LinuxHippie | 12/09/04
No And No  itanalyst | 12/09/04
Message has been deleted.  No_Ax_to_Grind | 12/09/04
ROFLMAO  No_Ax_to_Grind | 12/09/04
I Guess So..LOL!!  itanalyst | 12/09/04
Cards can be lost, just implant the chip!  Sunny Jalolly | 12/09/04
Nice Idea....If You Want To Burn In Hell  itanalyst | 12/09/04
But, you don't believe in Hell.  No_Ax_to_Grind | 12/09/04
Sure I Believe In Hell  itanalyst | 12/09/04
Have some of you not even SEEN a smart card?  BigHeat | 12/09/04
Yes, and relacement costs went thru the roof  Sunny Jalolly | 12/09/04
Interesting - sounds like SecurID  Zogg | 12/10/04
"Smart card" is generic - SecureID is an example.  BigHeat | 12/10/04
Connection with Sun?  Roger Ramjet | 12/09/04
At last: we found the  michael-t | 12/09/04
Smart Card for a Dumb OS  jacarter3 | 12/09/04
Weak but realistic  gandreotti | 12/09/04
Passwords are broken, but you can't make them better with duct tape  bkml@... | 12/14/04
ms idea of secure passwords is passport  JasonL31 | 12/10/04
Why not pass phrases  MAButler | 01/28/05

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
Click Here
advertisement
  • Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
  • Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
  • Smart People The best and worst moves in the management and strategy trenches. Learn More