ibutton

William Ahern william at 25thandClement.com
Wed Jan 29 14:44:03 EST 2003


the [java] crypto ibutton is such a card reading system. the private key
needn't leave it; it can sign data itself. and the ibutton doesn't cost an
arm-and-a-leg and require hefty implementation and service contracts.

plus, the ibutton doesn't need a pcmcia slot or bulky card reader. it can
fit on a ring, and plug-in via usb w/ little key-fob attachments.

On Tue, Jan 28, 2003 at 06:26:57PM -0600, Ben Lindstrom wrote:
> 
> I think you'd be better off using a card reading system where your private
> key never leaves the card.
> 
> I think that ibutton is overkill compared to throwing putty and your
> private key on a USB key.  And ibutton definitely looks just as unsecure
> as doing so.  USB 32meg keys are dirty cheap and fit nicely on keyrings.
> 
> - Ben
> 
> On Tue, 28 Jan 2003, William Ahern wrote:
> 
> > has anybody worked with support for the ibutton? i've come across keymgr
> > (http://www.rcpt.to/keymgr/), but it seems to be dead (or playing possum). i've
> > also come across ramblings about integrating ibutton support into openssl, but
> > i dunno how pertinent that is, or even whether the work still exists.
> >
> > i just want to get rid of my passwds (or lock them up in a safe), and the
> > ibutton seems to be the perfect tool. note that i'm not using windows, as
> > i've come across many windows ssh clients that support the ibutton.
> >
> > i'm not averse to hacking the keymgr code myself. i just want to hear what's
> > up in this space.
> >
> > please Cc: me.
> >
> > thanx,
> >
> > Bill
> >
> > _______________________________________________
> > openssh-unix-dev mailing list
> > openssh-unix-dev at mindrot.org
> > http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
> >




More information about the openssh-unix-dev mailing list