Questions tagged as ['two-factor-authentication']

Two-factor authentication (2FA) is a security system that requires two distinct forms of identification in order to access something. Two-factor authentication can be used to strengthen the security of an online account, a smartphone, or even a door.
Score: 0
Zero avatar
Alternative to physical aspect of security
gf flag

To answer my question, imagine a device that has some sort of secret(s) (stored on a crypto coprocessor), that is encrypted with some sort of symmetric encryption (like AES).

If to make this device secure, I would keep the key separate, in a smart card for example.

Then when the smart card is inserted into the device, I would input the PIN of the smart card to allow the device to read the key on the ...

Score: 2
Chirag Parmar avatar
Difference between fuzzy vault and fuzzy commitment?
cn flag

Quoting the above paper's abstract, "Biometric cryptosystem can apply fuzzy vault, fuzzy commitment, helper data and secure sketch, whereas, cancelable biometrics uses distorting transforms, Bio-Hashing, and Bio-Encoding techniques."

It differentiates between a fuzzy vault and a fuzzy commitment scheme. How are the two different? Where does fuzzy ext ...

Score: 3
Yash Dhingra avatar
Concatenation of password and TOTP - possible issues
cn flag

I have come across a two factor login mechanism using Time based OTP (TOTP). TOTP (6 digits) is shown to the user in an app.

There are two ways of logging in.

Method 1:

User inputs the username and password. Then approves the login notification received in the TOTP app. There is no need to enter the TOTP in this case.

username = username
password = password

Method 2:

User enters the concatenation of ...