Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Can you set a website to look for a USB security code before opening?

Posted on 2013-02-01
3
Medium Priority
?
230 Views
Last Modified: 2013-02-16
Hi All,

Not 100% sure how to go about this one.

I am looking to secure a page on a web site, but what I am after is a way to make the web page look for a specific USB security key (like a hardlock of sorts) before the page will open.

Site is in PHP at the moment.

Is what I am after even possible? As i would prefer not to have the USB install anything onto their computer, I really just want it to look for the file that is hidden on the USB

Thanks

James
0
Comment
Question by:nullag
3 Comments
 
LVL 16

Accepted Solution

by:
Chris H earned 750 total points
ID: 38845329
I recommend talking to the sales engineers here:

http://www.yubico.com/


I know the yubikey does what you want, just don't know how to explain it well..
http://www.yubico.com/products/yubikey-hardware/yubikey-nano/
0
 
LVL 84

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 750 total points
ID: 38845607
You can't check a persons hardware directly using http.  So you are left with having part 2 of the security matrix of two factor identification (something you know and something you have).

This 2nd part could be an sms text message sent to their phone, the yubikey, RSASecurID or use a one-time pad

http://en.wikipedia.org/wiki/Two-factor_authentication#USB_tokens
0
 
LVL 84

Expert Comment

by:Dave Baldwin
ID: 38846090
Whatever is in the file has to go over the network to the server which means I can capture it with a network scanner.  Is your method secure enough to not be broken by that?
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In 2017, ransomware will become so virulent and widespread that if you aren’t a victim yourself, you will know someone who is.
In threads here at EE, each comment has a unique Identifier (ID). It is easy to get the full path for an ID via the right-click context menu. However, we often want to post a short link within a thread rather than the full link. This article shows a…
Shows how to create a shortcut to site-search Experts Exchange using Google in the Chrome browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch the Search Engine Menu: In chrome, via you…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses

578 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question