Key Press Authorization.

Publicated on : 1179312243
I've written about this before, because I have a firm believe in using human interfaces to check if someone is human or bot. Now Gareth Heyes surprised me again with a authentication scheme based upon Key Press authorization. What he uses here is something that might actually work in certain places. I had to get used to idea when I tryed it out, but after it all makes sense. And it is far more easy to remember and probably as safe as a 256 character long missile launch code.

I didn't bother to attack it yet, maybe I will soon if I find the time. I think it will be tough to compromise this one, because one has to know the timing on 3 keys which are different for everyone who uses it, and are only shown with signing up.

Cool idea!