Comments on: 40 Year Old Virgin Storage: Insecure, Vulnerable http://storagemojo.com/2007/03/08/40-year-old-virgin-storage-insecure-vulnerable/ Data storage info & analysis Fri, 21 Nov 2008 16:33:57 +0000 http://wordpress.org/?v=2.6.3 By: Robin Harris http://storagemojo.com/2007/03/08/40-year-old-virgin-storage-insecure-vulnerable/#comment-36941 Robin Harris Sun, 11 Mar 2007 06:27:35 +0000 http://storagemojo.com/?p=396#comment-36941 Joe, Good comment, and I want to follow up on mobiKEY. There are different kinds of key loggers - the most common being a flash chip and a bit of logic attached to the keyboard. They can be built into the keyboard or some cable connectors. The on-screen keyboard would defeat keyboard loggers. Software keyloggers could be a different story. To defeat built-in keyloggers, put your operating system, browser and mail reader on the flash drive. Boot the internet cafe machine from the flash drive. You can be pretty confident that your data will stay secure. Robin Joe,

Good comment, and I want to follow up on mobiKEY.

There are different kinds of key loggers - the most common being a flash chip and a bit of logic attached to the keyboard. They can be built into the keyboard or some cable connectors. The on-screen keyboard would defeat keyboard loggers. Software keyloggers could be a different story.

To defeat built-in keyloggers, put your operating system, browser and mail reader on the flash drive. Boot the internet cafe machine from the flash drive. You can be pretty confident that your data will stay secure.

Robin

]]> By: joseph martins http://storagemojo.com/2007/03/08/40-year-old-virgin-storage-insecure-vulnerable/#comment-36914 joseph martins Sun, 11 Mar 2007 05:37:06 +0000 http://storagemojo.com/?p=396#comment-36914 I'm not sure an onscreen keyboard is going to help you Robin. If the keyboard's implementation is independent of an application, say a web browser, then it has to generate the same response as a keystroke on a physical keyboard. The computer, in most cases, would not know the difference and a keylogger would still work. One slick solution I had the opportunity to learn about is MobiKEY from Route 1. Check it out: http://www.route1.com/pro_mobikey.htm Windows only at this point, sorry. But it allows secure remote connection to applications and data. And it is smart enough to clean up after itself on the local PC. I do remember asking them about keyloggers and I cannot remember the response. I believe without the Key, the PWs are basically useless. I'll ask them again the next time I have them on the phone. In any case, I thought it was a novel solution to identity protection and secure access. I’m not sure an onscreen keyboard is going to help you Robin. If the keyboard’s implementation is independent of an application, say a web browser, then it has to generate the same response as a keystroke on a physical keyboard. The computer, in most cases, would not know the difference and a keylogger would still work.

One slick solution I had the opportunity to learn about is MobiKEY from Route 1. Check it out:

http://www.route1.com/pro_mobikey.htm

Windows only at this point, sorry. But it allows secure remote connection to applications and data. And it is smart enough to clean up after itself on the local PC. I do remember asking them about keyloggers and I cannot remember the response. I believe without the Key, the PWs are basically useless. I’ll ask them again the next time I have them on the phone. In any case, I thought it was a novel solution to identity protection and secure access.

]]>