KYPS (Keep Your Password Secret) is a free web-based service that enables users to log into websites, which usually require a username/password combination, using one-time passwords. The main difference between KYPS and similar password management technologies is that the password is never disclosed to the local computer. This makes KYPS effective against password theft by spyware or keyloggers, particularly when using public computers such as in an Internet cafe.[1]

A sketch of the KYPS login method.
A sketch of the KYPS login method. The user's password is not disclosed to the computer he uses. It is, however, disclosed to the KYPS server. The system therefore requires that the user trusts the provider of the service

More details about the internal workings of KYPS were published at the CSIE 2009 conference.[1] KYPS is also featured on Makeuseof,[2] and heise.de[3] Some of the internal workings of its predecessor, an open-source project called "Impostor",[4] were published at the peer-reviewed GLOBECOM conference in 2004.[5]

See also

edit

References

edit
  1. ^ a b Pashalidis, Andreas (2009). "2009 WRI World Congress on Computer Science and Information Engineering". WRI World Congress on Computer Science and Information Engineering. CSIE 2009. pp. 66–70. doi:10.1109/CSIE.2009.910. ISBN 978-0-7695-3507-4.
  2. ^ "MakeUseOf Article". Archived from the original on 2009-04-23. Retrieved 2009-08-11.
  3. ^ Heise.de Entry
  4. ^ "Impostor web proxy". Impostor.sf.net. Retrieved 2022-05-06.
  5. ^ Pashalidis, A.; Mitchell, C. J. (2004). "IEEE Global Telecommunications Conference, 2004. GLOBECOM '04". IEEE Global Telecommunications Conference, 2004. GLOBECOM '04. Vol. 4. pp. 2191–2195. doi:10.1109/GLOCOM.2004.1378398. ISBN 0-7803-8794-5.
edit