Very low grade audio cryptography...
Mar. 22nd, 2009 02:25 pm... aka how to say your credit card number over skype in a crowded internet cafe.
Say a few digits of the real number, then hit the mute button, say a few fake digits, un-mute, then continue.
Eg if your number is 4096 8192 1024 2048, you can say "4096 [mute] 5899 [unmute] 8192 1024 2048", and the person at the other end of the line hears "4096 8192 1024 2048".
This of course also works on cellphones and landlines... any time you can't trust the security of messages sent over the air molecules around you.
-----
On another topic, I dont know how keyloggers work, but on occasion I have had to use a public terminal to book something requiring a credit card number or access something requiring a password. It occurred to me that I could do a similar trick by typing some extra digits, then using the mouse to move the mouse pointer over the extra digits and delete them. Would that actually work? Are keyloggers so primitive that they just record the sequence of keys struck? I'm sure that it would be fairly easy to design a browser add-on that would snoop entered data in a way that would defeat this technique.
Say a few digits of the real number, then hit the mute button, say a few fake digits, un-mute, then continue.
Eg if your number is 4096 8192 1024 2048, you can say "4096 [mute] 5899 [unmute] 8192 1024 2048", and the person at the other end of the line hears "4096 8192 1024 2048".
This of course also works on cellphones and landlines... any time you can't trust the security of messages sent over the air molecules around you.
-----
On another topic, I dont know how keyloggers work, but on occasion I have had to use a public terminal to book something requiring a credit card number or access something requiring a password. It occurred to me that I could do a similar trick by typing some extra digits, then using the mouse to move the mouse pointer over the extra digits and delete them. Would that actually work? Are keyloggers so primitive that they just record the sequence of keys struck? I'm sure that it would be fairly easy to design a browser add-on that would snoop entered data in a way that would defeat this technique.