On 2017-03-27 23:34, David T-G wrote:
Carlos, et al --
...and then Carlos E. R. said... % ... % AD of the time. But setup in a paranoid mode. I had to enter a password % composed from a remembered password plus a code that was read from a % little clock style device that would churn one code per minute. % Something like 6 or 8 letters, perhaps numbers. Too long ago to remember. [snip]
That's the "something you know plus something you have" model. There may be other implementations, especially now that there are software tokens available, but what I have is an RSA (now part of EMC, I notice; interesting) SecurID token. It generates a new number every 30 seconds and -- most importantly -- it's in sync with a server at the office which knows what number is showing on my (and no other) token at that time.
Yes, same thing. -- Cheers / Saludos, Carlos E. R. (from 42.2 x86_64 "Malachite" (Minas Tirith))