![]() ![]() If you don't work for a company that supports this, then this feature is pretty much useless, and can be safely ignored. You need to be in possession of that physical "key" (RSA tag) as well as know your username / password to log in. The concept is the same as those RSA keychain tags people carry, that automatically generate a new code every 60 seconds. The Nitrokey contains an integrated smart card (based on Common Criteria. You need both the password AND physical smartcard to log in. But make sure you keep Microsoft Usbccid Smartcard Reader (WDUDF) enabled. This way, you protect against single-factor authentication attacks such as password-based attacks (keylogger, weak passwords, leaked passwords) and you protect against stolen keys / smartcards. The idea is that you plug in the smartcard to the laptop, and also type in a username / password, in order to log in. You'll usually find this in larger companies with mature IT infrastructure. ![]() You'll only find smartcard readers on enterprise-grade laptops, since they don't have a use in the consumer space. ![]() Smartcard slots are for companies that support two-factor authentication for logins. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |