About KYPS
Keep Your Password Secret
safely login despite keyloggers and spyware
what makes KYPS special?
There exist other methods that claim to protect your password against theft by spyware when using a public computer. This page lists the main advantages and disadvantages, in terms of security and ease of use, of some of these methods, alongside with the advantages and disadvantages of using KYPS. How important each advantage/disadvantage really is, depends on individual circumstances.
Note: The aim of this page is to provide a fair and objective overview of each method's strengths and weaknesses. Please contribute your thoughts if you think something important has been ommited.
the "usb memory stick" method
Description: The `memory stick' method involves putting some software on a USB memory stick, and running that software on the public computer from the USB stick. The idea behind this method is that, if you run the 'trusted' software on the memory stick, the spyware in the public computer does not get to see what you are doing.
Ease of use:
You can store and carry on the USB stick your favorite browser, applications,
pictures, and other personal files.
Some public computers do not have a working or free-to-use USB port.
Security:
You do not need to trust a third party.
Hardware keyloggers still record anything you type on the
keyboard, including passwords.
Software spyware can still record the network traffic that leaves the public
computer, including passwords; running, for example, a browser from the memory stick does not prevent this from happening.
Also, the fact that the network traffic may be encrypted when it leaves the computer is irrelevant - the spyware can do
the recording before it gets encrypted.
Spyware could make a copy of the contents of the memory stick without
your permission or knowledge. If the data is encrypted, the spyware can simply wait until you "mount" the stick by typing the
password that is needed for decryption (and record that password, too).
Malicious software on the public computer could
irrevocably delete or corrupt the contents of the USB memory stick as soon as it is inserted into
the computer.
Malicious software on the public computer could selectively
disable any anti-spyware or anti-keylogging software that may be present on the memory stick, for example by deleting
it or by replacing it with, well, more spyware.
Worst case scenario: Malicious software
on the public computer could infect the software on the memory stick with spyware, too! If this happens, then your 'trusted'
version of Firefox on the stick may actually start spying on you, even when later used on an otherwise trustworthy computer!
the "unorthodox password insertion" method
Description: The 'unorthodox password insertion' method involves entering the password in an 'unorthodox' way and hoping that this circumvents the spyware that may be running on the public computer. Typically, these 'unorthodox ways' do not involve typing anything on the keyboard, which is perhaps one of the reasons why some people convince themselves that the method is safe. Similarly, some people may be convinced that using some special 'anti-keylogger' program that claims to populate the form fields of a webpage in a 'keylogger-proof' manner, is a safe way to enter passwords.
Ease of use:
You do not need to carry around anything.
Entering your password in an unorthodox way is cumbersome and error-prone,
depending on how "unorthodox" the particular way is.
Security:
You do not need to trust a third party.
The method may circumvent some types of keylogger
(typically those based on hardware).
Spyware can still steal your password, by monitoring whatever means is used
to enter the password, together with the relevant context. This may include input from the mouse, the graphical areas that have
received mouse clicks, changes in window focus, etc.
Spyware can still steal your password by recording the network traffic that leaves the public
computer, including passwords. The fact that the network traffic may be encrypted when it leaves the computer
is irrelevant - the spyware can do the recording before it gets encrypted!
Malicious software could disable/prevent the execution of any anti-keylogger
software in the first place.
the "online password manager" method
Description: Some services on the Internet allow you to store your passwords with them - they are called 'online password managers' (OPMs). The idea is that, when you log into your account at the OPM using a 'master' password, the service gives you access to all your other passwords that you have previously stored at your OPM account. You can, of course, also use an OPM when using a public computer.
Ease of use:
The method works even with public computers that have no USB port
and no CD drive.
No expert knowledge is required.
You do not need to carry around anything (unless you use
the one-time password login method that some OPMs offer, in which case you need to carry a list of one-time codes).
You may need tο run special software on the public computer, such
as a browser plugin.
You need to register an account before you can start using the method.
Security:
Depending on implementation details and usage, using an OPM
may circumvent some keylogger types.
You need to trust the provider of the OPM service; they have access to all the
passwords that you store with them. (Even if they claim that they receive your passwords only in encrypted form,
chances are that they can still retrieve them if they wanted.)
If you want to login somewhere using a password that is stored at the OPM,
the password is first downloaded to the computer you are using. Once it is downloaded, it is, of course,
exposed to spyware. The spyware could then steal it, for example by recording the network traffic that
enters or leaves the public computer, including passwords downloaded from the OPM.
The above holds even if the OPM lets you to log into your OPM account using a one-time code
instead of a normal password: while this protects your OPM 'master' password against spyware when using a public computer, unfortunately
it does not protect any of your other (real) passwords, since they still get downloaded to the public computer.
DISCLAIMER: The above are based on public information about the OPMs known to the author at the time of writing. If you know any OPM service that does not fit the description, please let us know in order for us to update this comparison.
the "live CD" method
Description: Reboot a public computer using a 'live CD' that contains an operating system and software that is free from spyware.
Ease of use:
You need to carry around a CD.
Since you need to reboot the public computer using the CD, the method
does not work if the computer does not have a CD drive, or if it does not let you reboot from CD.
You need to be able to configure the network settings on the
operating system after you have rebooted from the CD in order to use the network. This typically requires expert knowledge
and, depending on possible restrictions in place at the visited site, may not even be possible.
Security:
The method provides protection against all spyware that is stored on
the hard disk of the public computer. This is because, after you have rebooted from the CD, that spyware will, most likely,
not get executed at all.
Hardware-based keyloggers still record anything you type. However,
this risk may be mitigated if passwords are entered without using the keyboard.
A good place to get started on the live CD method is this site.
the KYPS method
Description: You register with KYPS and obtain a list of one-time codes that are good for a website of your choosing. You can then use this list in order to log into that website when using a public computer. Alternatively, you can instruct KYPS to send you a one-time code to your mobile phone at the time you would like to login.
Ease of use:
You do not need to execute any software at the public computer.
The method works even with public computers that have no USB port and no CD drive; all they need to have is a
browser and a connection to the Internet.
The method does not require expert knowledge.
KYPS generates one-time codes in a variety
of formats, including easy-to-input word codes.
You need to carry either your mobile phone, or a small piece of paper
that easily fits in your wallet (and that you need to print yourself).
You need to register an account before you can start using the method.
Security:
KYPS protects your password from all types of spyware and keylogger. This is due to
the simple fact that, in contrast to all previously described methods, when using the KYPS service, your password is never
disclosed to the public computer (also read the disclaimer below).
You need to trust the provider of the KYPS service with your password,
to a certain extent, as described on this page. You should also know that KYPS acts as
a "reverse proxy", meaning that the communications after a login pass through the KYPS server (see
this page). However, as layed down in its privacy
policy, KYPS does not record any information about visited pages.
Disclaimer: while the KYPS service will not disclose your password to the public computer, your password may still be disclosed to it by the website after you have logged in. This, for example, could happen if you navigate to a 'change my password' page that also shows you your 'old' password. However, if the website is well-designed, it should never send out your password. Another minor risk factor arises due to the fact that the one-time codes themselves carry some information about the length of your password; having a short code means that you have a short password, too. If your password is too small (e.g. less than 4 characters), then this could enable an attacker to correctly guess your password.