Well security is only as good as the individuals handling it. Who knows where they are going to stick that finger ;-)
Since we tied the cards with the barcode to their time clock, they are very motivated on keeping the card secure :-) I was looking more for getting quick an easy ID info often, over security I created a JavaScript that counts time of entry, since the barcode is faster than anyone can type but slower than a cut/paste, I was able to use this time window to prevent unauthorized attempts Ben Johansen - http://www.pcforge.com Authorized Witango Reseller http://www.pcforge.com/WitangoGoodies.htm Latest downloads & List Archives @ http://www.witango.ws -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Anthony M. Humphreys Sent: Thursday, July 11, 2002 3:05 PM To: Multiple recipients of list witango-talk Subject: RE: Re: Witango-Talk: One more! A mathematician (not a forensics expert), Tsutomu Matsumoto, was able to "fool" fingerprint readers with aspic (aka Jelly, unflavoured Jell-o) He took a fingerprint off something the target touched, took a picture of it, made a mould from the photo, and then poured the jelly in to the mould and let it set. It was able to fool the fingerprint reader somewhere between 70%-95% of the time. He has effectively made all fingerprint readers insecure. Read: http://zdnet.com.com/2100-1105-916135.html or http://www.counterpane.com/crypto-gram-0205.html#5 or http://www.totse.com/en/bad_ideas/locks_and_security/164704.html Just imagine what somebody who knows something about forensics could do! Besides the user's resistance, I would have difficulty as a programmer recommending such an insecure means of identifying users. Cards are better understood, and it's much easier to notice when it is stolen, or misplaced. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ben Johansen Sent: Thursday, July 11, 2002 5:26 PM To: Multiple recipients of list witango-talk Subject: RE: Re: Witango-Talk: One more! We looked into them, but the biggest hurdle was the human acceptance factor. They could stomach a bar-coded badge, but to collect something that personal was met with tremendous resistance. I have to agree, I am a little Leary of this info link to my person Just my 2cents Ben Johansen - http://www.pcforge.com Authorized Witango Reseller http://www.pcforge.com/WitangoGoodies.htm Latest downloads & List Archives @ http://www.witango.ws -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Thomas Ferguson Sent: Thursday, July 11, 2002 2:14 PM To: Multiple recipients of list witango-talk Subject: RE: Re: Witango-Talk: One more! If you're going to do that, you could use the fingerprint readers they have. We did a project like that for one company in our area about 3 years ago. They had separate little thumbprint readers, and even keyboards with the thumbprint readers. They called the technology Biometrics. As I recall the keyboards were only about $99. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ben Johansen Sent: Thursday, July 11, 2002 4:38 PM To: Multiple recipients of list witango-talk Subject: RE: Re: Witango-Talk: One more! In one setting, we used 99$ barcode readers on all workstations, this solved several issues, like ID and Inventory control. We created id cards with barcodes on them and tied it to there time sheet ;) Didn't take them long to start using the barcode without thinking about it. Then we were able to ask for a quick login in key parts of the application, and the employees just grab the barcode without a hiccup. It also allowed for the employees to move from workstation to workstation. We were able to justify the barcode reader on each WS due to the fact that it was multi-purpose (not just ID). Ben Johan><td- http://www.pcforge.com Authorized Witango Reseller http://www.pcforge.com/WitangoGoodies.htm Latest downloads & List Archives @ http://www.witango.ws -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Campbell, Steve V. Sent: Thursday, July 11, 2002 12:06 PM To: Multiple recipients of list witango-talk Subject: RE: Re: Witango-Talk: One more! You know as it stands now..I can't ask them for anything! No login, fill in the blank or anything. Really puts a cramp in things. Steve -----Original Message----- From: Web Dude [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 11, 2002 1:54 PM To: Multiple recipients of list witango-talk Subject: Re: Witango-Talk: One more! I have some sites that require their email address as their login ID or login name along with a password. This would kill several egg-laying vertebrates with one mass of stony material. (or solid mineral deposit). >Hey Steve, > >I've run into similar situations, I didn't see the original email, and I >think people tent to freak out a bit too fast. Can you tell me a little bit >more about what it is that you need from the doctors to track them, what is >available to them to log in to your system, do they always use the same >machines, and anything else that gets thrown in as a funky variable that >makes your job harder. > >R > > >On 7/11/02 1:57 PM, "Campbell, Steve V." <[EMAIL PROTECTED]> wrote: > >> >> >> This is twice in three weeks my intentions have been questioned. Why in >> the world would I ask such a question on a list that I have been part of >> for more then two years and not have good intents? I need to track >> doctors because they are always too damn lazy to use user/pass >> credentials. >> >> I, am a novice. I make no pretends here. I only ask questions in a >> forthright manner to help me understand what I am doing a bit more. I >> have no desire to start a fued nor do I have a desire to be anything but >> a person doing his job. >> >> I apologize for being so honest. >> >> >> -----Original Message----- >> From: Ben Johansen [mailto:[EMAIL PROTECTED]] >> Sent: Thursday, July 11, 2002 12:37 PM >> To: Multiple recipients of list witango-talk >> Subject: RE: Re: Witango-Talk: One more! >> >> I hope this ability never becomes mainstream. >> This would effective stop email due to so much spam. >> >> I am sure you intentions are honorable, but for every honorable >> intention on the web there are 50 dishonorable waiting to take what they >> can. >> >> >> Ben Johansen - http://www.pcforge.com >> Authorized Witango Reseller http://www.pcforge.com/WitangoGoodies.htm >> Latest downloads & List Archives @ http://www.witango.ws >> >> >> -----Original Message----- >> From: [EMAIL PROTECTED] >> [mailto:[EMAIL PROTECTED]] On Behalf Of Campbell, Steve V. >> Sent: Thursday, July 11, 2002 9:17 AM >> To: Multiple recipients of list witango-talk >> Subject: RE: Re: Witango-Talk: One more! >> >> One more question. What can you capture without the user knowing it's >> being captured. I know you can do normal stuff like, where they came >> from, how long and that type of data, but, is there anyway to capture >> their email address somehow without them knowing it? >> >> Any ideas? >> >> Steve >> ________________________________________________________________________ >> TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] >> with unsubscribe witango-talk in the message body >> >> >> >> ________________________________________________________________________ >> TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] >> with unsubscribe witango-talk in the message body >> ________________________________________________________________________ >> TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] >> with unsubscribe witango-talk in the message body >> > >_______________________________________________________________________ _ >TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] > with unsubscribe witango-talk in the message body -- ________________________________________________________________________ TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] with unsubscribe witango-talk in the message body ________________________________________________________________________ TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] with unsubscribe witango-talk in the message body ________________________________________________________________________ TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] with unsubscribe witango-talk in the message body ________________________________________________________________________ TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] with unsubscribe witango-talk in the message body ________________________________________________________________________ TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] with unsubscribe witango-talk in the message body ________________________________________________________________________ TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] with unsubscribe witango-talk in the message body ________________________________________________________________________ TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] with unsubscribe witango-talk in the message body
