View source for Talk:OpenDuino
From syn2cat - HackerSpace.lu
- [History↑]
Contents
| Thread title | Replies | Last modified |
|---|---|---|
| Alternative OpenDuino authentication | 2 | 20:24, 23 May 2011 |
feel free to modify these or add your own.
[edit] Possibility A
- Step 1: Log in to an application (ideally a mematool addon)
- Step 2: Print a QrCode that will be valid for at most 2h
- Step 3: Show your QrCode to a webcam installed at the Space's front door
- Step 4: OpenDuino will verify your qrcode and send you a confirmation code to your mobile phone.
- Step 5: You will get an SMS (of course you'll need a mobile phone and have your number registered with us) with a verification code
- Step 6: Show the verification code to the webcam or scribble it on a sheet of paper.
- Step 7: OpenDuino will confirm that you are who you claim to be.
If, at first sight, you compare this to the current auth, this method is more secure. So I try to determine what were the conditions to come up with this procedure.
- the user must give his password
- the user has to be at the front door
- ??? I can't think of anything else
So procedure optimized as follows:
ask via authenticated webpage for a code.
that code is sent via sms and is valid 2h
show the code to the webcam (or via IR or bluetooth)
You do not have permission to edit this page, for the following reason:
You can view and copy the source of this page:
Return to Thread:Talk:OpenDuino/Alternative OpenDuino logins/reply (2).
