Along the same lines, does anyone have any comments about the security of Lexar's new
thumb print-sensing, password-managing drive
(http://www.theregister.co.uk/2004/09/28/lexar_bio_device/)? The original flaw
mentioned was due to storing the password for drive contents on the drive. Other
FYI, there's an interesting article in eWeek today -- see
http://www.eweek.com/article2/0,1759,1663716,00.asp -- regarding a recent
Gartner study on software security. Among other things, it says, Gartner
predicts that if 50 percent of software vulnerabilities were removed prior to
production
Joel Kamentz wrote...
Also, shouldn't it be easy enough to steal one of these and lift a fingerprint
from it with scotch tape and then be able to get at all of the passwords in the
device?
If that didn't work, the gummy bear approach probably would.
---
Kevin W. Wall Qwest Information