Steve Fosdick wrote:
I can not think at the moment of anything that is 100% secure using the hardware you describe.
I cannot think of anything which is 100% secure with any hardware!
Just best efforts is good enough for this application, although...
If the above is not secure enough I suspect you need one of those one time password tokens that give the user a number to type in which is checked by the black box. As these are sealed up devices it would be very hard indeed for the user to get the necessary random number sequence out to program into something else.
... this would be very effective, I think. (Still wouldn't stop the key being migrated to a different laptop but that's probably sufficient for this application.)
I know they exist but have no idea what they're called, can anyone enlighten me? Would make Googling a lot easier!