HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
Get a load of this password protection system. I think I like the circle idea best, the other one just looks like a swarm of bees.
Follow along with the video below to see how to install our site as a web app on your home screen.
Note: This feature may not be available in some browsers.
why would you use a mouse cursor to punch in a numerical password on a big fucking keypad with a computer screen in the first place?
Or..you can just get a privacy screen. Or better yet, type in your password using both your hands instead of one finger and few are likely to be able to follow your fingers anyhow.
Yep. Even if one couldn't determine the algorithm governing the fake cursors' behavior, the user would have to be trained to "swirl" the real cursor around, clicking when the cursor passes over the right numbers. Otherwise, the real cursor will be discernible because it will be making purposeful movements (and they'd become more obviously purposeful with repetition) from button to button.Given that they're worried about screen caps and key loggers, a video recorder would be able to determine which cursor was real.
The "fake" cursors must move to either a semi-random or algorithmic pattern. The real cursor's movement is unconstrained.
Far better to use passwords entered by keyboard - hopefully with the option to have passwords up to as many as 100 characters - and then add further security by randomizing the number of asterisks generated with each keypress so that an observer won't even be able to figure out how many real characters make up the password.
True, but I was addressing only the visual aspect which, as you note, is all that the subject software addresses. One shouldn't install keyloggers in the first place, of course.Complex passwords don't mean a damn thing when it comes to key-loggers. Although software could keep track of the cursors position when the mouse button clicks anyways...
Eh, Yubikey FTW.
True, but I was addressing only the visual aspect which, as you note, is all that the subject software addresses. One shouldn't install keyloggers in the first place, of course.
Thumbdrive. KeePass. Was that so hard?
Pretty common defense against key loggers.
Yep. Very novel.simple but effective
You could have some of the fake cursors mimic the real cursor but turned 90 degree or mirrored for a short period of time. You could also have some fake cursors intersect the real and other fake cursors so that the cursors are perfectly merged. Then have them diverge slowly from each other making following a specific cursor a nightmare.Given that they're worried about screen caps and key loggers, a video recorder would be able to determine which cursor was real.
The "fake" cursors must move to either a semi-random or algorithmic pattern. The real cursor's movement is unconstrained.
Thumbdrive. KeePass. Was that so hard?
+1,000,000,000
why would you use a mouse cursor to punch in a numerical password on a big fucking keypad with a computer screen in the first place?