SAFE USB Token Login (SUTL)
SUTL is a SAFE application that uses a USB flash drive to log in to the SAFE Network without a keyboard.
01: Download SUTL from the SAFE Network.
02: Run SUTL (For the super paranoid only run SUTL on an off-line computer)
03: User prompted to insert a USB flash drive
04: User prompted to input desired log in credentials
Keyword
PIN
Password
05: USB flash drive formated and encrypted with users PIN
06: Generate public and private key pair with users login credentials
07: Store key pair on the encrypted USB flash drive
08: Encrypt login credentials with key pair and store on encrypted USB flash drive
09: Run SUTL in on-line mode (for the super paranoid use USB flash drive on a different computer)
10: Create SAFE account with SUTL
11: User prompted to input PIN to decrypt USB Flash drive
12: In lieu of typing log in credentials, users encrypted login credentials are used instead
13: Log in to SAFE account with SUTL
14: User prompted to input PIN to decrypt USB Flash drive
15: In lieu of typing in log in credentials, users encrypted login credentials are used instead
Damaged, lost, or stolen USB flash drives can be replaced using SUTL on any machine that already has SUTL installed or has access to download SUTL.
Criticism is welcome, solutions are even more welcome.
Edit: The PIN does not need to be used to encrypt the USB flash drive. A better way to encrypt it would be to use a pass phrase, this way it would be harder to crack and easier to remember.