The Perfect Key?
I've been thinking about security a lot lately: physical security of our new house, physical security of my new office (I'm looking for new space, know of any?), login security for my computers, and security of my personal information and files on my computers. For simplicity, I'd love a solution that would help me secure all three things: my doors, my computers, and my files... all with one tool.
I already use PGP for file security and I like it a lot. I can encrypt single files (like my employee's W-2s) or entire disks (like my Accounting drive at work) with some very secure public/private key magic. The trick here is to keep the private key safe. As long as the bad guys don't have my private key, it's theoretically impossible for them to read my encrypted stuff.
For building security, RFID cards, number pads, even smart cards can be used instead of keys to open doors. RFID cards would be touchless, so I could wave the key in front of the door and say "Presto!" Number pads are the old faithful way of letting someone in without a key, but they can sometimes be even more cumbersome than using a regular key. Smart cards seem to be more secure than RFID at the moment, mainly since they don't transmit over the air and they usually use decent encryption, but they require a card swiper at the door.
RFID and smart cards can also be used (along with a PIN, normally) as replacements for passwords on computers, but they both require special readers that have to be attached to the computer. Secure USB keys alleviate that problem by plugging in to, well, common USB ports. USB keys can also be used to store PGP public and private keys, so a good USB key could fit two of my three requirements. But, I'd still like a touchless key to open my doors at home and at work.
So I've been looking for a USB key that has an RFID tag built in to it... No luck yet. There are tons of USB keys out there, and tons of key fobs that have RFID tags, but none with both. Of course, after reading all the pages I Googled in the hopes of finding one, I'm beginning to think that RFID isn't really the way I want to go. There are too many stories of people being able to read RFID tags from sixty feet away. But are there other options for touchless entry systems? Maybe Bluetooth or something that works like a garage door opener? Heck, maybe not garage door openers... unless they have gotten much more secure over the last few years... I just don't know. Guess I'm going to keep looking.
If I have to put two separate items on my keychain, one USB key and one secure wireless door opener, that would be okay, but putting them together would be the best option. Do you know of anything that will fit my needs? Leave me a comment and let me know! Meanwhile, I'm going to keep on searching...
I already use PGP for file security and I like it a lot. I can encrypt single files (like my employee's W-2s) or entire disks (like my Accounting drive at work) with some very secure public/private key magic. The trick here is to keep the private key safe. As long as the bad guys don't have my private key, it's theoretically impossible for them to read my encrypted stuff.
For building security, RFID cards, number pads, even smart cards can be used instead of keys to open doors. RFID cards would be touchless, so I could wave the key in front of the door and say "Presto!" Number pads are the old faithful way of letting someone in without a key, but they can sometimes be even more cumbersome than using a regular key. Smart cards seem to be more secure than RFID at the moment, mainly since they don't transmit over the air and they usually use decent encryption, but they require a card swiper at the door.
RFID and smart cards can also be used (along with a PIN, normally) as replacements for passwords on computers, but they both require special readers that have to be attached to the computer. Secure USB keys alleviate that problem by plugging in to, well, common USB ports. USB keys can also be used to store PGP public and private keys, so a good USB key could fit two of my three requirements. But, I'd still like a touchless key to open my doors at home and at work.
So I've been looking for a USB key that has an RFID tag built in to it... No luck yet. There are tons of USB keys out there, and tons of key fobs that have RFID tags, but none with both. Of course, after reading all the pages I Googled in the hopes of finding one, I'm beginning to think that RFID isn't really the way I want to go. There are too many stories of people being able to read RFID tags from sixty feet away. But are there other options for touchless entry systems? Maybe Bluetooth or something that works like a garage door opener? Heck, maybe not garage door openers... unless they have gotten much more secure over the last few years... I just don't know. Guess I'm going to keep looking.
If I have to put two separate items on my keychain, one USB key and one secure wireless door opener, that would be okay, but putting them together would be the best option. Do you know of anything that will fit my needs? Leave me a comment and let me know! Meanwhile, I'm going to keep on searching...
2 Comments:
Thanks Brian,
Good article! Have you been able to find a combined USB/RFID key yet? Or have you thought up an alternative? For the main USB based access and data security, have a look at: www.giritech.com.
Rgds,
Lars, Denmark
Nothing yet. I'm beginning to think it would be best to steer clear of RFID entirely, though. Bluetooth looks promising except for the key's need to be charged.
The U.S. government just announced using ID cards with a magnetic strip and a microchip (presumably Smart Card or similar) that would store biometric information. This looks like a good idea to me, as long as they don't put too much silly information on the chips, like the mentioned time entry logs.
http://www.washingtonpost.com/wp-dyn/content/article/2006/08/27/AR2006082700511.html
Post a Comment
Links to this post:
Create a Link
<< Home