Comments on: Portable Security For Us All, Or Why Steve Gibson Is My Hero http://www.macsinlaw.com/portable-security-for-us-all-or-why-steve-gibson-is-my-hero/ Using Macs, iPhones, & iPads in the practice of law Fri, 24 May 2013 19:47:11 +0000 hourly 1 http://wordpress.org/?v=3.5.1 By: Jeffrey Schoenberger http://www.macsinlaw.com/portable-security-for-us-all-or-why-steve-gibson-is-my-hero/#comment-218 Jeffrey Schoenberger Mon, 16 Apr 2012 19:52:34 +0000 http://www.macsinlaw.com/?p=588#comment-218 There are a few ways to address this. The first is that I keep a Yubikey on my car keychain. It is tiny and unnoticeable. That way if you have your keys, you have your Yubikey.

A second way to address it, with LastPass in particular, you can sync up to four Yubikeys – so one for your keychain, one for your travel bag, etc. That’s my system. The third, again with LastPass, is that there are smartphone apps for all the major platforms that give you access to your passwords so that you can pull them up on the phone app and manually enter them when you hit a website, so you’re locked out of convenience, but not totally out of your work.

Third, there are other two-factor systems that might be more convenient for you. For example, Google and some banks offer two-factor authentication by way of a text message code sent to your phone. In order to access Gmail or Bank of America, you need your ID, password, and your phone. Chances are far less likely you would forget your phone than your Yubikey on a trip.

But ultimately two-factor authentication means keeping track of a physical object and having it with you when you want to gain access to a site. It’s a combination of something you know and something you have, be it a Yubikey or a phone. I agree that there is an additional burden of tracking a physical object, but security is gained by sacrificing some convenience. If a personal anecdote helps, I’ve used Yubikeys with LastPass since July of 2010 and not been locked-out yet.

]]> By: Missing App: Two-Factor Authentication « Small Firm Innovation http://www.macsinlaw.com/portable-security-for-us-all-or-why-steve-gibson-is-my-hero/#comment-217 Missing App: Two-Factor Authentication « Small Firm Innovation Mon, 16 Apr 2012 16:35:27 +0000 http://www.macsinlaw.com/?p=588#comment-217 [...] got the idea from a post by Jeffrey Schoenberger, on Brett Burney’s (@macsinlaw) blog. Two-factor authentication requires more than just a [...]

]]> By: Brett Burney http://www.macsinlaw.com/portable-security-for-us-all-or-why-steve-gibson-is-my-hero/#comment-216 Brett Burney Mon, 16 Apr 2012 13:46:06 +0000 http://www.macsinlaw.com/?p=588#comment-216 Mark, thank you. But I have to give credit to Jeffrey Schoenberger who authored the piece. I’ll only take credit for recognizing good talent and Mac-smarts when I see it. Jeffrey has authored two pieces for the blog so far, and I am looking forward to many more! Thanks again Mark.

]]> By: Mark C. Metzger http://www.macsinlaw.com/portable-security-for-us-all-or-why-steve-gibson-is-my-hero/#comment-206 Mark C. Metzger Thu, 05 Apr 2012 21:59:00 +0000 http://www.macsinlaw.com/?p=588#comment-206 This is a great post, Brett. The content is unique and it’s very well written.

m2

]]> By: Top http://www.macsinlaw.com/portable-security-for-us-all-or-why-steve-gibson-is-my-hero/#comment-204 Top Tue, 03 Apr 2012 14:10:08 +0000 http://www.macsinlaw.com/?p=588#comment-204 So what happens if you leave you yubikey behind when you go on a trip?

]]>