>-----BEGIN PGP SIGNED MESSAGE----- > >July 19, 2001 > >e-gold Ltd. (http://www.e-gold.com) has implemented >web site upgrades that provide for enhanced customer >and site security. > >e-gold passphrase entry can now be optionally performed >by account holders clicking the SRK button next to the >passphrase input box. This input method provides increased >protection against keystroke loggers and some viruses designed >to capture keystrokes. (If you suspect your computer *has* >been infected by a virus, your first concern should continue >to be the removal of that virus.) What a great idea! At 1:00 PM -0400 7/19/01, Jay W. wrote: >Secure Randomized Keypad >i think something not unlike this idea was mentioned on this very list >a while back?? JP?? No, i suggesting using select menus for each letter -- which is in fact what happens on http://www.1mdc.com where you are forced to use it. Someone (from Australia? I can't remember who) mentioned that a banking site in Australia uses a concept (ie, like your SRK) which is javascript and I believe it brings up more of an "image" of a keyboard. (Your input-buttons are a much more reliable idea though.) Question though - it seems to go to the server each time you click lower case / upper case / numbers / symbols. That delay (whilst it goes to the server) makes it a bit slow to use. What about just showing all the keys at the one time, or swapping them client-side? Awesome! A KISS security improvement that works. Another e-gold triumph! --- You are currently subscribed to e-gold-list as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED]
