Back in Security Quest #2 I talked about the PayPal Security Key. The PayPal Security Key can also be registered and used with OpenID through Verisign’s Personal Identity Provider (PIP) program. OpenID is a URL that serves as an ID to establish your identity although it doesn’t establish trust. OpenID is still in it’s infancy and there’s not a lot of sites I use (read that as none – at least that promote it) that use OpenID. Still, it’s interesting to think about where OpenID fits into the authentication scheme. [...] Read the rest »
Security Quest #2: PayPal Security Key & Weekly Update
PayPal is piloting a new feature that more financial institutions should consider and every PayPal client should use. They are making Verisign security key fobs available to PayPal users for a nominal cost of $5 each. The cost includes shipping. The key fob generates a new six digit password every thirty seconds. You enter this, along with your password, when signing onto PayPal. Even if someone gets your password they cannot access the account without the key fob (well, there is an exception). PayPal’s Security Key FAQ sums up it’s [...] Read the rest »
