Just recieved my new PINsentry card reader through the post today.

 

Looks a lot more secure than the old way. I'm sure crooks will find away past it eventually (if they haven't already LOL) but it does seem to be a big step forward for online security.

 

Well impressed!! :bow:

Yeah I use it, its ok. All depends on the computer your using more than their site though.

Yeah I use it, its ok. All depends on the computer your using more than their site though.

True!

Is it a card reader or a PIN generator ?

http://www.newsroom.barclays.com/Content/Detail.asp?ReleaseID=1013&NewsAreaID=2

Is it a card reader or a PIN generator ?

The card reader generates an 8 digit access number after you insert your card and enter your PIN. This 8 digit number changes every time you use the reader. You have to input the 8 digit number into your online access instead of using your old 5 digit number and memorable word.

i use it too but the pinsentry thing annoys me because it means i cannot access my banking from any computer unless i lug the pin generator about. As you say the crooks will one day get past this too so what is the point. It is not like i ever have any money in my account to steal anyway so i am not that bothered about how secure it is!

OK, then this is known as a 'one-time password'. In other words, should your password be eavesdropped in transit to the bank, then whoever gets hold of it cannot use it again.

 

There are two residual risks, firstly that the algorhyhim that is used to generate the PIN is reverse engineered (like with the wartime Enigma machines) and secondly that the crooks/hackers find a way to access the banks website bypassing the PIN authentication althogether, in which case you're back to square one.

i love barclays, always been good to me, especially when i asked for 125k to go and pick up my gallardo at short notice.

I have had a Nat West account for years. Did the online banking thing and very nearly had it hacked. Caught it just in the nick of time. Since then I have had no confidence in it? As you get old it is hard to accept these new things and when they go wrong or almost do its frightening.

I have the same sort of thing with the BOS for my business account and it works well.

 

My Mrs, when she has to login to work from home through a VPN has to enter one password then a generated code from one of these contraptions and then another password ... what a nightmare!

 

You cant have too much security though can you, not these days anyway. I mean if I can crack a neighbours network through WEP then get into their computer network then nothing is safe, and I'm no hacker (so to speak) ..

 

I was just testing their network security .. honest! ..

WEP is not secure, this is a different thing entirely.

I have the same sort of thing with the BOS for my business account and it works well.

 

My Mrs, when she has to login to work from home through a VPN has to enter one password then a generated code from one of these contraptions and then another password ... what a nightmare!

 

You cant have too much security though can you, not these days anyway. I mean if I can crack a neighbours network through WEP then get into their computer network then nothing is safe, and I'm no hacker (so to speak) ..

 

I was just testing their network security .. honest! ..

 

Arrest that man ! :rofl:

To log into my work network firstly you have to have one of there lap tops. You need to have log in to get into the laptop. You then need to have a 4 digit pin number which goes with a securID number generator which generates a six digit number every 30 seconds or so. This number is then also generated on the works system somehow to allow you to log in.

 

The thing is it is only th size of a key fob so you can carry it around with you.

 

How secure it is I have no idea.

 

From painfull experience I would say that most hacks of a bank account are because the use has been stupid and followed one of those links off a spoof ebay email or the like. Thats what I did. Pressed enter and thought, damn I shouldn't have done that.

 

Darrell

To log into my work network firstly you have to have one of there lap tops. You need to have log in to get into the laptop. You then need to have a 4 digit pin number which goes with a securID number generator which generates a six digit number every 30 seconds or so. This number is then also generated on the works system somehow to allow you to log in.

 

 

Thats all fine and dandy having the front door nice and secure, but a hacker wont walk up your garden path and try getting in through there. They will use the back doors that are left reasonably open, even at banks. We got into Deutsche Bank's international transfer server AND took control of it from the internet in less than three min.

 

This was done infront of the board of directors and the head of IT was marched out the building there and then.

To log into my work network firstly you have to have one of there lap tops. You need to have log in to get into the laptop. You then need to have a 4 digit pin number which goes with a securID number generator which generates a six digit number every 30 seconds or so. This number is then also generated on the works system somehow to allow you to log in.

 

The thing is it is only th size of a key fob so you can carry it around with you.

 

How secure it is I have no idea.

 

Darrell

 

That's standard 2-factor authentication (something you know and something you have). Although, I doubt whether you actually need one of their laptops to login, it's just a case of setting it up correctly.

We used to use the SecureID thing years ago when it was the size of a credit card.

These days we just use VPN with username/password to log on to the company systems.

 

Still waiting for my Barclays pinreader thingy too.

i love barclays, always been good to me, especially when i asked for 125k to go and pick up my gallardo at short notice.

 

And my Veyron LOL. :tongue: :rofl: :rofl: