diff --git a/blog/2024-06-07_MFA-i.html b/blog/2024-06-07_MFA-i.html new file mode 100755 index 0000000..6ddf49d --- /dev/null +++ b/blog/2024-06-07_MFA-i.html @@ -0,0 +1,25 @@ + + + +Kyle's Blog + + + +
+

MFA & Radomness - Part i

+

2024-06-07

+
+
+

Anecdotally I kept seeing certain numbers and patterns showing up in 2 digit MFA that I regularly use, notably double of adjacent numbers, so I started plotting them out, while I only have 80 data points from the last couple months. I believe it's slowly confirming my theory, could still be coincidence is at play with the low amount of data compared to the 90 possible outcomes, but if not I'm curious to as why they aren't a fair or even random.

+ +

I suppose the actual number isn't actually what is important to security, just that it's another layer of security, so even if the numbers are weighted to more friendly and easy to enter, bad actors will still need the user's device or convine the user to tell them the number. Just as long as you can't predict the next number with certainty when the current expires, it doesn't really matter how random the number is, just random enought that the next can't be predicted.

+

Note: I also believe this is true of a 6 digit I use regularly as (again anecdotally) I've picked up what I believe are patterns, unpredictable but still user friendly. I figured I track the 2 digit as it's easier to keep track of. Not all MFA would use the same number generation so some might be a more 'true' random while others like the one I'm plotting maybe weighted.

+

I've made this 'Part i' as I wish to return to my theory and findings once I have more data.

+
+ + + + diff --git a/blog/home.html b/blog/home.html new file mode 100755 index 0000000..504938b --- /dev/null +++ b/blog/home.html @@ -0,0 +1,26 @@ + + + +Kyle's Blog + + + +

Kyle's Blog

+
+
+

By date

+

2024-06-07 MFA & Randomness - Part i

+
+
+

Tech

+

2024-06-07 MFA & Randomness - Part i

+

Life

+

Other

+
+
+ + + diff --git a/blog/style.css b/blog/style.css new file mode 100755 index 0000000..81b0b4c --- /dev/null +++ b/blog/style.css @@ -0,0 +1,24 @@ +body {background-color: #0f1a30;} +h1 {color: white;font-family: Tahoma, Verdana, sans-serif;text-align: center;} +h2 {color: white;font-family: Tahoma, Verdana, sans-serif;text-align: left;padding-left: 100px} +h3 {color: white;font-family: Tahoma, Verdana, sans-serif;text-align: center;} +p {color: white;font-family: Tahoma, Verdana, sans-serif;text-align: center;} +a {color: white;font-family: Tahoma, Verdana, sans-serif;text-align: center;} + +.container_index { display: grid; + grid-template-columns: 1fr 1fr; + grid-template-rows: 1fr; + gap: 0px 0px; + grid-auto-flow: row; + grid-template-areas: + "blog_date blog_theme"; + p {color: white;font-family: Tahoma, Verdana, sans-serif;text-align: left;padding-left: 100px;} +} +.blog_date { grid-area: blog_date; } +.blog_theme { grid-area: blog_theme; } + +.blog_head { + } +.blog_body { + p {color: white;font-family: Tahoma, Verdana, sans-serif;text-align: left;padding-left: 20%;padding-right: 20%;} + } diff --git a/blog/template.html b/blog/template.html new file mode 100755 index 0000000..a1aab7f --- /dev/null +++ b/blog/template.html @@ -0,0 +1,25 @@ + + + +Kyle's Blog + + + +
+

Title

+

YYYY-MM-DD

+
+
+

Para 1

+ +

Para 2

+

Para 3

+

Para 4

+
+ + + + diff --git a/index.html b/index.html index 1b22a3a..d761630 100755 --- a/index.html +++ b/index.html @@ -12,11 +12,11 @@

kyledot.net - Index site

kyledot.net/projects - Projects

kyledot.net/resume - Resume*

+

kyledot.net/blog/home - Blog*

TheBakery

downloads.thebakery.net.au - Download index

-

blog.thebakery.net.au - Ramble blog*

shop.thebakery.net.au - Joke shop*

diff --git a/projects.html b/projects.html index 1573eda..6d226b2 100755 --- a/projects.html +++ b/projects.html @@ -19,7 +19,8 @@
diff --git a/resume.html b/resume.html index bd91ae7..1d0ca65 100755 --- a/resume.html +++ b/resume.html @@ -28,7 +28,8 @@