Searching \ for '[OT] Program Security was -Remove IC markings. Enc' in subject line. ()
Make payments with PayPal - it's fast, free and secure! Help us get a faster server
FAQ page: www.piclist.com/techref/index.htm?key=program+security
Search entire site for: 'Program Security was -Remove IC markings. Enc'.

Exact match. Not showing close matches.
PICList Thread
'[OT] Program Security was -Remove IC markings. Enc'
2004\11\06@141857 by Bob Axtell

face picon face
The key to all encryption is to make stealing data more trouble than it is
worth. Homeland Security took 6 weeks to decode an encrypted ZIP
(Silver Key) I sent to a client who (unbeknown to me) was selling into
the Middle East; they had an urgent reason. Most people simply can't
afford to spend that much time at it.

The best scheme I ever saw for an 8-character simple password was
an incredibly simple hardware method. If the incorrect password was
given, the hamburger stand employee timeclock (at the end of a
standalone modem) set a 5-min lockout timer; and ANY password entered
DURING that 5-min lockout was ignored- even if it was the RIGHT
password!, and each try further extended the 5-minute timer. No timeclock
so protected was ever hacked.

Since the 8 characters can be one of 36 alphanumeric characters, the
time to acquire
the password is 36*36*36*36*36*36*36*36*5min. I get  2,821,109,907,456
minutes,
which when divided by the number of minutes/year (525,600) is
5,367,408.5 years,
assuming somebody gets wise to the fact that 5 minutes MUST be waited
between tries.
Most folks would give up long before that...

--Bob

Bob Ammerman wrote:

> Wouter,
>
> Why are you eliminating the idea of a real "one-time pad"? That is an
> integral part of the security.
>
> Bob Ammerman
> RAm Systems
>
> {Original Message removed}

2004\11\07@083035 by hilip Stortz

picon face

yes!  that's the correct way to do it, that is optimum results and
security, assuming you don't let any of the employees know about the
time out (and most won't figure it out) or how long it is (which they
can only guess at).  of course with a spectrum analyzer they could tell
what was going on, but if they are that sophisticated they aren't going
to waste their time on the time clock, they'll go for the safe or the
cash registers- i.e. figure out how to remove money from the drawer and
the records!

Bob Axtell wrote:
------
> The best scheme I ever saw for an 8-character simple password was
> an incredibly simple hardware method. If the incorrect password was
> given, the hamburger stand employee timeclock (at the end of a
> standalone modem) set a 5-min lockout timer; and ANY password entered
> DURING that 5-min lockout was ignored- even if it was the RIGHT
> password!, and each try further extended the 5-minute timer. No timeclock
> so protected was ever hacked.
-----

--
Philip Stortz, mad scientist at large -- "It is sobering to reflect that
one of the best ways to get yourself a reputation as a dangerous citizen
these days is to go about repeating the very phrases which our founding
fathers used in the struggle for independence." -- Charles A. Beard
____________________________________________

More... (looser matching)
- Last day of these posts
- In 2004 , 2005 only
- Today
- New search...