Pages:
Author

Topic: NXT :: descendant of Bitcoin - Updated Information - page 42. (Read 2761629 times)

sr. member
Activity: 404
Merit: 250
https://nxtforum.org/
How about finger print and facial recognition !

many great ideas that pops out and are actually compatible with nxt!
hash of the scans on your face/fingerprints can be used for passphrases! no need to take anything with you.
hero member
Activity: 490
Merit: 504
mr smith: I am only a visionaire here, this is how I personally think Nxt could be used. I freely presented my ideas
full member
Activity: 182
Merit: 100
1) creating account
- I can generate 12 words or choose a picture from computer
- my pass will be saved into wallet.dat if I want
- it will tell me how to backup my password

2) using account
- it will never ask for my password, if I chose to use wallet.dat
- NXT payments will be able to be approved by a creadit card, by a smartphone, by smart watch via android and other devices. If I go to the shop, I want to buy one apple for 5 Nxt by using my NXT credit card or smart device

Don't forget about ACCOUNT CONTROL! You will have limits on spending Nxt from your accounts, so it is like our credit card limits
Sounds fantastic, When will the nxt credit cards be ready for use ? I had no idea the banking system had allowed nxt to use the fiat SWIfT system > well done
full member
Activity: 236
Merit: 100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Release 0.9.2e

http://download.nxtcrypto.org/nxt-client-0.9.2e.zip

sha256: 5050e51728384d9b903377b5a4415cfada04fb207ab894a00abaeebcb70f0a2e


Change log:

Fractional asset quantities. Enjoy another reset of testnet.

When issuing an asset, the maximum allowed number of digits after the asset
quantity decimal point can be specified as "decimals" parameter (allowed
values 0 to Cool. For example, this would be 2 for a currency like EUR, 8 for
Bitcoin.

Similar to prices, asset quantities can be specified either as quantityQNT,
expressed in the smallest possible quantity unit ("quant") for the specific
asset, or as quantityINT, expressed in whole asset units (which may however
contain a fractional part despite its name).
For example, 9.97 USD can be expressed as either quantityINT="9.97", or
quantityQNT="997", assuming decimals=2 for USD.

JSON responses containing quantities or asset balances are again returned in
both quantityINT and quantityQNT, as strings.

When placing an ask or bid order, if quantityQNT is specified, the price is
interpreted to apply to QNT quantity units (regardless of whether the price
itself was specified in NXT or in NQT). If quantityINT is specified, the
price is interpreted to apply to INT quantity units.
For example, a bid order for quantityQNT="300", priceNXT="2", for asset USD
will be interpreted as $3.00 at 1 cent = 2 NXT, i.e. 200 NXT for one dollar,
600 NXT total.
If parameters are submitted as quantityINT="7", priceNXT="50", the order will
be for $7.00 at 50 NXT for one dollar, 350 NXT total.

Internally order matching and tracking of account asset balances is always
done in quantityQNT. An unfortunate side effect for now is that when placing
an order using quantityINT, the calculated price in NQT for one QNT unit must
be an integer.
So you cannot place an order for quantityINT="1", priceNXT="10.12345678"
(or equivalently priceNQT="1012345678"), because then the price of one
quantityQNT will be 10123456.78 NQT. The priceNXT will have to be either
10.12345600 or 10.12345700. If this is confusing, specify the order as
quantityQNT="100", priceNQT="10123456".



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=rd3Z
-----END PGP SIGNATURE-----

Fractional asset quantities are coming.
hero member
Activity: 490
Merit: 504
nice new text about Nxt, from some blog/site
http://nova-gaia.com/the-nxt-phase-of-our-evolution/
hero member
Activity: 490
Merit: 504
Dear New Nxt users,

our main forum is here:

http://www.nxtforum.org/

If you want to help Nxt or get some rewards for your help, you can start here:

- texts: https://nxtforum.org/nxt-promotion/articles/msg5936/#msg5936

- graphics: https://nxtforum.org/nxt-promotion/infographics/

- videos: https://nxtforum.org/nxt-promotion/videos/msg5937/#msg5937


If you want to present some bigger project, you can submit proposals in:

https://nxtforum.org/marketing-committee/

and for devs:
https://nxtforum.org/technical-development-committee/

--
very soon will be released Nxt Kickstarter, so you can also count with crowdfundings Smiley


BTW, right now we recommend to use this Nxt client: http://nxtra.org/nxt-wallet - with simple installation process

If you want to buy Nxt, the biggest exchange is bter.com. You can easily buy Nxt on Cryptsy.com. But you need to wait for transfers in and out of these exchanges. If you want to use automatic Nxt exchanges, you can try bittrex.com
hero member
Activity: 596
Merit: 500
It's really not that hard to secure your NXT account, even with the current setup.

1) Open your text editor, close your eyes, and randomly strike keys. Make sure you use a combination of upper and lower case, numbers and special characters. You  must have a minimum of 30 characters. Personally I just kept going until the end of a single line on my text editor's window.

2) Save this file buried somewhere on your filesystem. Obviously do not name it "mynnxtpassword.txt" and save it in My Documents. You can call it something like "en-us" or "random_program_serial". Remove the txt extension so it appears as an unknown file.

3) Your NXT password should be this string PLUS a simple password (such as one you commonly use) that you type in either before or after pasting in the string.

By following these simple steps, the only possible way someone would get into your account would be if you had malware on your computer that was able to read the clipboard AND your keystrokes. Extremely unlikely. If you are truly paranoid, you can use a virtual keyboard instead of typing in one part of your password.

For extra security, NXT should be installed on a Linux Virtual Machine as opposed to your main system.

How about finger print and facial recognition !
Could a keylogger know what characters are deleted and where they were in a password?

Almost all keyloggers capture clipboard.

This will never save you against keyloggers.

Here is a typical keylogger

http://download.cnet.com/Free-Keystroke-Logger/3000-2162_4-75447782.html

Quote
It captures all keystrokes from all applications in covert, invisible mode. Then saves collected information to special reports, so you can view results of monitoring later. In addition, it is possible to scan clipboard for changes (record copied text), and monitor Internet navigation (record visited websites)



What about Stereotype's suggestion of deleting random parts of the passphrase after it is entered? I've never thought of that before but it sounds like it could work. The keylogger would be able to detect how many times you hit the backspace key, but not at which point in the passphrase string.
hero member
Activity: 644
Merit: 500
It's really not that hard to secure your NXT account, even with the current setup.

1) Open your text editor, close your eyes, and randomly strike keys. Make sure you use a combination of upper and lower case, numbers and special characters. You  must have a minimum of 30 characters. Personally I just kept going until the end of a single line on my text editor's window.

2) Save this file buried somewhere on your filesystem. Obviously do not name it "mynnxtpassword.txt" and save it in My Documents. You can call it something like "en-us" or "random_program_serial". Remove the txt extension so it appears as an unknown file.

3) Your NXT password should be this string PLUS a simple password (such as one you commonly use) that you type in either before or after pasting in the string.

By following these simple steps, the only possible way someone would get into your account would be if you had malware on your computer that was able to read the clipboard AND your keystrokes. Extremely unlikely. If you are truly paranoid, you can use a virtual keyboard instead of typing in one part of your password.

For extra security, NXT should be installed on a Linux Virtual Machine as opposed to your main system.

How about finger print and facial recognition !
Could a keylogger know what characters are deleted and where they were in a password?

Almost all keyloggers capture clipboard.

This will never save you against keyloggers.

Here is a typical keylogger

http://download.cnet.com/Free-Keystroke-Logger/3000-2162_4-75447782.html

Quote
It captures all keystrokes from all applications in covert, invisible mode. Then saves collected information to special reports, so you can view results of monitoring later. In addition, it is possible to scan clipboard for changes (record copied text), and monitor Internet navigation (record visited websites)

hero member
Activity: 644
Merit: 500
It's really not that hard to secure your NXT account, even with the current setup.

1) Open your text editor, close your eyes, and randomly strike keys. Make sure you use a combination of upper and lower case, numbers and special characters. You  must have a minimum of 30 characters. Personally I just kept going until the end of a single line on my text editor's window.

2) Save this file buried somewhere on your filesystem. Obviously do not name it "mynnxtpassword.txt" and save it in My Documents. You can call it something like "en-us" or "random_program_serial". Remove the txt extension so it appears as an unknown file.

3) Your NXT password should be this string PLUS a simple password (such as one you commonly use) that you type in either before or after pasting in the string.

By following these simple steps, the only possible way someone would get into your account would be if you had malware on your computer that was able to read the clipboard AND your keystrokes. Extremely unlikely. If you are truly paranoid, you can use a virtual keyboard instead of typing in one part of your password.

For extra security, NXT should be installed on a Linux Virtual Machine as opposed to your main system.

How about finger print and facial recognition !
Could a keylogger know what characters are deleted and where they were in a password?

Almost all keyloggers capture clipboard.

This will never save you against keyloggers.
legendary
Activity: 1554
Merit: 1000
It's really not that hard to secure your NXT account, even with the current setup.

1) Open your text editor, close your eyes, and randomly strike keys. Make sure you use a combination of upper and lower case, numbers and special characters. You  must have a minimum of 30 characters. Personally I just kept going until the end of a single line on my text editor's window.

2) Save this file buried somewhere on your filesystem. Obviously do not name it "mynnxtpassword.txt" and save it in My Documents. You can call it something like "en-us" or "random_program_serial". Remove the txt extension so it appears as an unknown file.

3) Your NXT password should be this string PLUS a simple password (such as one you commonly use) that you type in either before or after pasting in the string.

By following these simple steps, the only possible way someone would get into your account would be if you had malware on your computer that was able to read the clipboard AND your keystrokes. Extremely unlikely. If you are truly paranoid, you can use a virtual keyboard instead of typing in one part of your password.

For extra security, NXT should be installed on a Linux Virtual Machine as opposed to your main system.

How about finger print and facial recognition !
Could a keylogger know what characters are deleted and where they were in a password?
If not, generate random characters by whatever means, and then add say, 6 or more characters somewhere within the generated text, that you remember. Save it as above. So if the raw file is compromised, its not correct anyway. And by deleting the remembered characters when using the string, even if a keylogger is operating, it wont know where the characters were deleted from.  

Ive missed something haven't i??
full member
Activity: 189
Merit: 100
Anyone know how the token in NRS works? For instance, when I click the token icon, I got a page to ask me to input a website and my pass phrase. If I try to create a token for Dgex, should I input Dgex website? If so, when I send it to Dgex, what can they do with the token?

they can confirm you own that account with given token!
sr. member
Activity: 952
Merit: 253
So 10 confirm is the minimum needed for Nxt block chain irreversibly ,right?

No. Right now 10 Nxt confirms ~ 1 Bitcoin confirm.

Does this mean NXT confirmations are 10 times faster than Bitcoin but 10 times less trusted!

Doesn't that mean the amount of time for a transaction to be fully trusted on NXT and Bitcoin is about the same?

Or maybe I understood this wrong, kinda hoping so Smiley
hero member
Activity: 763
Merit: 500
Anyone know how the token in NRS works? For instance, when I click the token icon, I got a page to ask me to input a website and my pass phrase. If I try to create a token for Dgex, should I input Dgex website? If so, when I send it to Dgex, what can they do with the token?
full member
Activity: 182
Merit: 100
It's really not that hard to secure your NXT account, even with the current setup.

1) Open your text editor, close your eyes, and randomly strike keys. Make sure you use a combination of upper and lower case, numbers and special characters. You  must have a minimum of 30 characters. Personally I just kept going until the end of a single line on my text editor's window.

2) Save this file buried somewhere on your filesystem. Obviously do not name it "mynnxtpassword.txt" and save it in My Documents. You can call it something like "en-us" or "random_program_serial". Remove the txt extension so it appears as an unknown file.

3) Your NXT password should be this string PLUS a simple password (such as one you commonly use) that you type in either before or after pasting in the string.

By following these simple steps, the only possible way someone would get into your account would be if you had malware on your computer that was able to read the clipboard AND your keystrokes. Extremely unlikely. If you are truly paranoid, you can use a virtual keyboard instead of typing in one part of your password.

For extra security, NXT should be installed on a Linux Virtual Machine as opposed to your main system.

How about finger print and facial recognition !
hero member
Activity: 644
Merit: 500
It's really not that hard to secure your NXT account, even with the current setup.

1) Open your text editor, close your eyes, and randomly strike keys. Make sure you use a combination of upper and lower case, numbers and special characters. You  must have a minimum of 30 characters. Personally I just kept going until the end of a single line on my text editor's window.

2) Save this file buried somewhere on your filesystem. Obviously do not name it "mynnxtpassword.txt" and save it in My Documents. You can call it something like "en-us" or "random_program_serial". Remove the txt extension so it appears as an unknown file.

3) Your NXT password should be this string PLUS a simple password (such as one you commonly use) that you type in either before or after pasting in the string.

By following these simple steps, the only possible way someone would get into your account would be if you had malware on your computer that was able to read the clipboard AND your keystrokes. Extremely unlikely. If you are truly paranoid, you can use a virtual keyboard instead of typing in one part of your password.

For extra security, NXT should be installed on a Linux Virtual Machine as opposed to your main system.


Most here understand this. Go back a few pages and see someone complaining about nxt because he used  "null" (no string) as secret phrase  and got hacked.

We are trying to implement solutions here how not to let users make such mistakes, and make it easy so they don't have to type 12 words long passwords.




hero member
Activity: 596
Merit: 500
It's really not that hard to secure your NXT account, even with the current setup.

1) Open your text editor, close your eyes, and randomly strike keys. Make sure you use a combination of upper and lower case, numbers and special characters. You  must have a minimum of 30 characters. Personally I just kept going until the end of a single line on my text editor's window.

2) Save this file buried somewhere on your filesystem. Obviously do not name it "mynnxtpassword.txt" and save it in My Documents. You can call it something like "en-us" or "random_program_serial". Remove the txt extension so it appears as an unknown file.

3) Your NXT password should be this string PLUS a simple password (such as one you commonly use) that you type in either before or after pasting in the string.

By following these simple steps, the only possible way someone would get into your account would be if you had malware on your computer that was able to read the clipboard AND your keystrokes. Extremely unlikely. If you are truly paranoid, you can use a virtual keyboard instead of typing in one part of your password.

For extra security, NXT should be installed on a Linux Virtual Machine as opposed to your main system.





For security , the nxt client should be installed in a vergin computer .

And I don't want the file wallet.dat .... this is NXT not BTC  Grin

The saving of a complex string is essential as an extra layer of protection. Say you just memorize 12 random words.

1) There is a possibility that they aren't random enough and your account will be brute forced.
2) All it would take is a keylogger to be installed on your system to obtain your password.

By using the combination of a complex string that you paste in AND a password that you type in, you eliminate the possibility of a brute force attack, and the malware would have to be able to read both your clipboard AND your keystrokes. Basically, you are safe.

And yes, you can use either a virgin computer or a VM, so long as it's not Windoze Smiley
legendary
Activity: 1778
Merit: 1043
#Free market
It's really not that hard to secure your NXT account, even with the current setup.

1) Open your text editor, close your eyes, and randomly strike keys. Make sure you use a combination of upper and lower case, numbers and special characters. You  must have a minimum of 30 characters. Personally I just kept going until the end of a single line on my text editor's window.

2) Save this file buried somewhere on your filesystem. Obviously do not name it "mynnxtpassword.txt" and save it in My Documents. You can call it something like "en-us" or "random_program_serial". Remove the txt extension so it appears as an unknown file.

3) Your NXT password should be this string PLUS a simple password (such as one you commonly use) that you type in either before or after pasting in the string.

By following these simple steps, the only possible way someone would get into your account would be if you had malware on your computer that was able to read the clipboard AND your keystrokes. Extremely unlikely. If you are truly paranoid, you can use a virtual keyboard instead of typing in one part of your password.

For extra security, NXT should be installed on a Linux Virtual Machine as opposed to your main system.





For security , the nxt client should be installed in a vergin computer .

And I don't want the file wallet.dat .... this is NXT not BTC  Grin
member
Activity: 64
Merit: 10
when will the asset exchange finally come?
hero member
Activity: 596
Merit: 500
It's really not that hard to secure your NXT account, even with the current setup.

1) Open your text editor, close your eyes, and randomly strike keys. Make sure you use a combination of upper and lower case, numbers and special characters. You  must have a minimum of 30 characters. Personally I just kept going until the end of a single line on my text editor's window.

2) Save this file buried somewhere on your filesystem. Obviously do not name it "mynnxtpassword.txt" and save it in My Documents. You can call it something like "en-us" or "random_program_serial". Remove the txt extension so it appears as an unknown file.

3) Your NXT password should be this string PLUS a simple password (such as one you commonly use) that you type in either before or after pasting in the string.

By following these simple steps, the only possible way someone would get into your account would be if you had malware on your computer that was able to read the clipboard AND your keystrokes. Extremely unlikely. If you are truly paranoid, you can use a virtual keyboard instead of typing in one part of your password.

For extra security, NXT should be installed on a Linux Virtual Machine as opposed to your main system.









legendary
Activity: 1176
Merit: 1134
I like the general idea of using hashes of files. But I think it confuses the hell out of users (especially with images). Passphrase/Wallet situation would be criticized even more.

I didn't say it should be implemented, but I am throwing an idea which is pretty safe (much safer than wallet.dat with private keys in it).  It's hard to write malware to steal wallet.dat when the   wallet could be any random file (or combination of random files) on the computer.


This is good idea! I also thought the same thing a while back. People can remember pics much better than most things. The one weakness is that if somebody knows you a bit and you dont have that many pics to choose from, they would be able to find the right one if they ever got access to your computer

If someone has access to your computer and wants to harm you, then they can do anything. Nothing can save you, They can install for example hardware/software keylogger.  There is no safety against the scenario where someone has both access to your computer and want  to steal/do harm.

A random file as a secret phrase saves you trouble of typing your passwords and it makes it harder to for malware writer to steal the right file.
  

Also, for extra paranoids they can keep the key files in USB thumb drive among 1000s of other images. That will make it even more safer, as the right files will not be even on the computer
 
I like the idea of making a USB drive into a hardware passkey. Just make sure to have more than one, put one in a really safe place and have another for everyday use. When logging in, just put in USB and eject as soon as passkey is loaded into browser RAM

James

P.S. keyloggers are for technically sopisticated, eg. teenagers. So parents computers arent safe from their teenagers. However, with the pic approach, the teenagers computers wont be safe from parents!
Pages:
Jump to: