Skip to Content
7-25-2008 @ 7:27PM
Short answer is no, even if someone keylogs a few dozen or hundred of your auth codes, that won't help them log into your account.The code is generated using a big 'ol random number stored on a chip inside the BA, and a time value generated when you push the button. The time value changes at fairly short intervals, usually 30 seconds or one minute. The code you generated five minutes ago is no longer valid. In addition, once a code is used, it's disabled for the rest of that time cycle. If I use 123456 to log in, and some hacker grabs that code and immediately tries to use it to break into my account, the authentication server won't take it because it's already been used.The code generation algorithm is one way - even if you have the end code and you know all of steps involved in the process, you can't reverse them to figure out the starting numbers. The analogy security people like to use is a meat grinder. You can drop a hunk of beef into a grinder and turn it into hamburger, but you can't turn the hamburger back into ground beef no matter what you do.
First time? A confirmation email will be sent to you after submitting.
Members enter your username and password.
Enter your AOL or AIM screenname and password.
Please keep your comments relevant to this blog entry. Email addresses are never displayed, but they are required to confirm your comments.
When you enter your name and email address, you'll be sent a link to confirm your comment, and a password. To leave another comment, just use that password.
To create a live link, simply type the URL (including http://) or email address and we will make it a live link for you. You can put up to 3 URLs in your comments. Line breaks and paragraphs are automatically converted — no need to use <p> or <br /> tags.