A Wetpaint Site

Sign in to Wetpaint

Amazon Web Services Evangelists

Sign in or

Location: Trip Planning

Discussion: WebLookOn graphical authentication service for use in the cloud

Category: Discussion Forum / General Discussion

Report thread
Watch thread
Add as page
Share this

Showing 4 posts

keymaker	WebLookOn graphical authentication service for use in the cloud Mar 27 2009, 1:56 PM EDT Hello Mike, Weblookon just opened its doors this week, and I just wanted to get in contact with you for your opinion about our authentication service. Just visit us at www.weblookon.com . We hardly tried to get everything operating well out of the Swiss mountains, where our core application server is housed. The method of WebLookOn is based on a strong patented algorithm and on a steganographical method of transmitting secret messages without showing in any way. We offer Weblookon as a service for our customers that need stronger authentication than passwords give. No soft- nor hardware needs to be installed, neither by a user nor by our customers. The strengh and security of the method was tested by several international capacities. Typical customers for us are Online shopping portals, betting plattforms, auctions but also value transaction providers and banks.... Would be nice having any answer, recommendation or what so ever on WebLookOn. Just try it - make your personal key. In the near future we will have full single Sign-On functionality for every user within our customer directory. Our main goal would be to contribute to a safer internet by just replacing the old password logins.......Please do not hesitat to contact us heinrich.mautner(at)weblookon.com Quote & reply Post reply 2 out of 5 found this valuable. Do you find this valuable? Do you? Keyword tags: authentication cloud computing login safer internet single sign-on (edit keyword tags)
Posted Anonymously	1. RE: WebLookOn graphical authentication service for use in the cloud Mar 28 2009, 1:00 PM EDT I don't think this method can be recommended. It uses the same principle as Seclookon, a system that has been around in German newsgroups for quite some time but was rejected due to some systematic flaws that make it less usable (especially for the blind), less secure (because of the needed clear-text storage of secrets) and less available (DoS) than other knowledge-based systems. Weblookon seems to be even worse as it only uses six pictures so the secret can easily be derived from a few observed logins because the used fields are not hidden. I would be very interested in the tests from the international capacities mentioned. Their existence was claimed several times but the assessments are not available to the public. Oh, and I'm very sorry, but the system has got no steganography in it. I suggest you look up the true meaning of terms before you use it to explain something. Another interesting question: You are working in the Swiss mountains and you target betting platforms? Interesting, because online betting is forbidden by the laws of Switzerland. Quote & reply Post reply 3 out of 5 found this valuable. Do you find this valuable? Do you?
Posted Anonymously	2. RE: WebLookOn graphical authentication service for use in the cloud Mar 30 2009, 5:11 AM EDT > ... a system that has been around in German newsgroups for quite some time but was rejected Not at all! Your German is evidently more horribly than my English. > due to some systematic flaws that make it less usable (especially for the blind), Oh yes, the pictures are the problem for Amazon, Youtube, Facebook, Windows and so on. Now let’s go back to the command line. > less secure (because of the needed clear-text storage of secrets) I read that nonsense now for the second time. Let me tell you that's pure nonsense. That shows you've no clue how it works. > and less available (DoS) than other knowledge-based systems. And that's nonsense too. > Weblookon … only uses six pictures so the secret can easily be derived from a few observed logins because the used fields are not hidden. Oh in fact? I need the secret Key-ID, the pictures, the symbols, the relation between pictures and the input character, all the information (input AND output) and more than one login. Sounds really simple? You joking man. > Oh, and I'm very sorry, but the system has got no steganography in it. I suggest you look up the true meaning of terms before you use it to explain something. Oh, you should better understanding things before you post something. Quote & reply Post reply 1 out of 4 found this valuable. Do you find this valuable? Do you?
Posted Anonymously	3. RE: WebLookOn graphical authentication service for use in the cloud Mar 30 2009, 2:31 PM EDT If my German is not good enough, I encourage everyone to simply google Weblookon or Seclookon, filter out all press releases from the vendor and see what is left. > Oh yes, the pictures are the problem for Amazon, Youtube, Facebook, Windows and so on. You are comparing apples and oranges. Of course there is content in the world that is not available for people with disabilities. But Weblookon is not excluding people from content they could never use, it excludes them from the login to written content they could use. The login of none of the pages you named depends on pictures. >> less secure (because of the needed clear-text storage of secrets) > I read that nonsense (...). That shows you've no clue how it works. Then explain it to me. How on earth can your system compile the pictures and check the results without knowing the secret? > > and less available (DoS) than other knowledge-based systems. > And that's nonsense too. From what I remember your system has to compile the pictures (based on the key), keep a channel during the complete process and remember the numbers wanted/used. That sound's like a lot more effort then checking a password. > Oh in fact? I need the secret Key-ID, the pictures, the symbols, the relation between pictures and the input character, all the information (input AND output) and more than one login. Modern malware, screengrabbers and keyloggers are no rocket science. If your system gets some attention, someone will soon evaluate, how many logins you have to observe to derive the key. >> Oh, and I'm very sorry, but the system has got no steganography in it. > Oh, you should better understanding things before you post something. OK, where do you HIDE a message? The involvement of pictures doesn't turn a system into steganography. Quote & reply Post reply 3 out of 5 found this valuable. Do you find this valuable? Do you?

Related Content

(what's this?)

cloud computing

JavaScript must be enabled in order for you to contribute to this site.
To start contributing, enable JavaScript by changing your browser options, then try again.