A place for my RSA secure id

Message

koden · #1 Post by **koden** » Fri Oct 03, 2008 2:22 pm

At work I have a T60.
I use a RSA secure ID to VPN connect to my company.

The secureid I therefore use every day.

Is there someone who have a good idea where to place the secureid in the laptop?
Or is there other kinds of secureids that's smaller or...???

I don't use the pcmcia slot. Have someone made a storage that could fit in there or something else.

I know it's a funny question, but I could have missed something useful...

Wiz · #2 Post by **Wiz** » Fri Oct 03, 2008 6:19 pm

The RSA SID 700 is the smallest token available from RSA. They also have software tokens that is a small application running on your computer, handheld or cell phone instead of a hardware token. To use the software token your administrator have to add a software token to your account at the secure id server. I know you can run the software token on Windows, Windows mobile, Palm and Blackberry. It's not free though.

If you think about the security i don't think storing the token and the computer together is a very good idea. Neither have i ever heard about anyone placing the token inside a Thinkad. Actually i never before heard about anyone consider to do so either:)

phr · #3 Post by **phr** » Sat Oct 04, 2008 4:33 am

Storing it in the laptop defeats its purpose, which is to make sure that the token is not stored in the laptop (for example as data). Usually the small secureid's have a keychain hole, so put it there with your house/car keys.

koden · #4 Post by **koden** » Sat Oct 04, 2008 11:18 am

I know that it's no good idea to store the token at the same place as the computer.
But all do it...
My token is in the bag where my computer is.

The security is that the pin code is in my head and not any other place....

In the cell phone...very good idea...

sktn77a · #5 Post by **sktn77a** » Sun Oct 05, 2008 11:47 am

Check with your IT department. You can use a software token most of the time in place of the separate harware secure ID.

mikeshoup · #6 Post by **mikeshoup** » Sun Oct 05, 2008 3:37 pm

sktn77a wrote:Check with your IT department. You can use a software token most of the time in place of the separate harware secure ID.

Most IT departments actually don't allow that. A hardware token is more secure. Plus, it defeats the purpose of giving everyone hardware tokens if you'll let them store the data on the computer.

I do tech support for a large corporation that forces everyone to use PKI tokens. The things are a royal PITA sometimes, but so much more secure than an encrypted file on your computer which can be decrypted rather quickly using brute force, provided your employees don't use strong passwords (which most don't).

FYI: The company I do tech support for uses ThinkPads exclusively. Its awesome.

sktn77a · #7 Post by **sktn77a** » Sun Oct 05, 2008 7:27 pm

Well, the way it works at my company is the timer in the client software is synchronized with the main server and a unique PIN number is required to log on. They are pretty paranoid about security as they are a large pharmaceutical R&D company and this seems a pretty secure system.

It's worth a phone call, though.

TTA · #8 Post by **TTA** » Sun Oct 05, 2008 11:59 pm

If you could fine one of these in a Type 3 configuration it might work.
http://cgi.ebay.com/ws/eBayISAPI.dll?Vi ... 0092658555

A place for my RSA secure id

A place for my RSA secure id

Who is online