I think they are great tools. You may want to check out cryptocard. They are
much less expensive ($500 gets you 5 tokens and server license for primary and
failover servers), they have lots of hard and soft tokens and hard tokens never
expire and can have batteries easily changed. One other nice feature is you
can set it to generate a new token with every button press vs waiting 30 to 60
sec for new number...which is fun when needing to sign on to many servers at
once (nothing like taking 6 to 10 min to get on servers during an outage.
Good luck
David
-----Original Message-----
From: eladexposed@gmail.com
To: pen-test@securityfocus.com
Sent: 6/28/07 9:26 AM
Subject: Hardware/software secureIDs - pros and cons.
Hello, What are the pros and cons for using hardware RSA SecureID/Other and
software with the same characteristics? For example:
http://www.rsa.com/node.aspx?id=1313 Let's say there's a company that allow
only customers using the hardware SecureID to connect its resources - What
might be the main arguments the company has to prefer the hardware and not the
software? From the customer's point of view it's better to have software
installed (management, holding of multiple tokens, user usage etc) Kind
Regards, Elad Shapira ("Zest") "Security, however, is an art, not a science."
- RFC 3631
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Swap Out your SPI or Watchfire app sec solution for
Cenzic's robust, accurate risk assessment and management
solution FREE - limited Time Offer
http://www.cenzic.com/wf-spi
------------------------------------------------------------------------
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Swap Out your SPI or Watchfire app sec solution for
Cenzic's robust, accurate risk assessment and management
solution FREE - limited Time Offer
http://www.cenzic.com/wf-spi
------------------------------------------------------------------------
|