Author Topic: Keyhotee and security  (Read 576 times)

0 Members and 1 Guest are viewing this topic.

Offline Talos

  • Newbie
  • *
  • Posts: 18
    • View Profile
Keyhotee and security
« on: January 19, 2014, 11:41:06 am »
Will Keyhotee have 2FA incorporated? Or would this just add a layer of complexity that isn't required?

Offline Troglodactyl

  • Hero Member
  • *****
  • Posts: 960
    • View Profile
Re: Keyhotee and security
« Reply #1 on: January 19, 2014, 03:50:02 pm »
2FA (assuming you mean one time passwords like Google Authenticator or something) only makes sense for authenticating to a trusted third party, which isn't how Keyhotee authentication works.  OTP demonstrates that you know a shared secret without revealing the secret to anyone listening in, but it can't be used to directly secure files, just to convince someone else to give you access to something secured through other means.

Keyhotee security will depend on the complexity of your passwords and on the security of the computer from which you use it.  Because you don't have to trust your passwords to any third parties for authentication, this is much more secure than password only authentication for a web based account.

EDIT:  On second thought Keyhotee does have 2FA, the first factor being the profile file generated with your brain wallet key and profile information, and the second factor being the password required to decrypt it.
« Last Edit: January 19, 2014, 04:05:42 pm by Troglodactyl »