View October 13 2011 Meeting
Meeting Notes
Attendees:
- Preston Wiley, CERIS
- Doug Couch, ITNS
- Brad Oldfather, Ivy Tech student
- Nathan Heck, ITNS
- Craig Van Tassle, HUBzero
- Pascal Meunier, HUBzero
- Keith Watson, CERIAS
Presentation:
Keith Watson presented on one-time password systems. He reviewed the history, mechanics, and available solutions. He demonstrated Facebook OTP, Google Two-Step Verification, and OPIE on FreeBSD.
Given the availability of RFC and standards-based software libraries and OTP tools for mobile devices, Keith challenged the audience to think about new ways of using OTPs. Implementation of new OTP systems are easily accomplished using existing software libraries. The challenge is to design and implementation a new (and hopefully novel) way of applying OTPs. Shoot for a demonstration in January.
Discussion Points:
- November's meeting will be a workshop on Metasploit. We will look at the basics of this tools, how to use it in an assessment, and the various modules available.
- December's meeting will be an updated version of a presentation on career management in information security.
Action Items:
- Assist with the Metasploit workshop by contributing to the workshop.
- Design your OTP solution for January's meeting.