Close
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Subscribe
Logo
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Subscribe
    Home Latest News
    • Mobile

    Defense Against Keystroke Loggers?

    Written by

    Bill Machrone
    Published August 15, 2002
    Share
    Facebook
    Twitter
    Linkedin

      eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

      Why would I waste your time writing about a product that doesnt work? Because there is, however small, a need for it. And maybe some enterprising soul will create one that does work, and support it properly.

      The device in question is called CompuSafe. You plug it into your keyboard port, and your keyboard into CompuSafe. Its job is to create keystroke-by-keystroke encryption, so that if anyone is running a keystroke logger or Trojan that captures your keystrokes, all they see is garbage. The little box contains encryption hardware, and communicates with a driver that decrypts the keystrokes so that your applications can understand them.

      CompuSafe is from Safe Technology Co. Ltd. (www.esafetek.com). The company has a Web site, but none of it is in English. Basically, you cant buy this product unless you speak Korean.

      CompuSafe sounds good on paper, but has a couple of shortcomings. First, it assumes that the CompuSafe driver will load first or deeper, so that the keystroke logger sees the characters before theyre decrypted. Second, it offers no defense against spyware that simply takes snapshots of the screen.

      I tested CompuSafe on a Dell 4100 running Windows XP, and matched it against WinWhatWhere Investigator, one of the best-known and most comprehensive keystroke loggers. W3I also captures screenshots. The CompuSafe installation was uneventful. An icon in the system tray showed whether CompuSafe was in secure mode or not, and a pair of LEDs on the unit tell you when its getting power and when its in secure mode.

      CompuSafes pop-up menu has only two choices: turn encryption on/off and turn on keyboard hooking alert. This latter function is supposed to tell you if some other device or process is hooking the keyboard interrupt or driver. I turned the hooking alert on, then started and stopped WinWhatWhere Investigator. No alert. I uninstalled and reinstalled W3I. Still no alert.

      With CompuSafes encryption turned off, my keystrokes appeared, as you would expect, in W3Is log. With it turned on, I got this:

      “Now is the time forall good men to cometo the aid of theirparty“

      Not exactly the master of deception, is it? I uninstalled W3I again and installed a no-name key logger that Id gotten from a hacking site some time back. This time, the log showed normal text when the CompuSafe was turned off and gobbledygook when it was turned on. But the systems response to keystrokes was sluggish, and it would miss some entirely.

      W3I was clearly snagging its keystrokes someplace further downstream than CompuSafes driver, closer to the applications, but it was also picking up all those backslashes, perhaps from CompuSafes decryption process.

      How Paranoid?
      You have to be pretty paranoid to install a piece of hardware whose sole purpose is to defeat key loggers. And if you use a laptop, the device is pointless. It would make more sense to run WhosWatchingMe (www.trapware.com) periodically to see if youre being logged, and then clean the logger off the system.

      But I like the idea of a device or software that can alert you if your keyboard interrupt is being hooked. In this increasingly security-conscious world, the more stuff you have on your side, the better.

      Related stories:

      • Privacy and Security on Your PC
      • ExtremeTech Syscheck
      • Secure Your Software with Hardware
      Bill Machrone
      Bill Machrone
      Bill Machrone is vice president of technology at Ziff Davis Publishing and editorial director of the Interactive Media and Development Group. He joined Ziff Davis in May 1983 as technical editor of PC Magazine, became editor-in-chief in September of that year, and held that position for the next eight years, while adding the titles of publisher and publishing director. During his tenure, Machrone created the tough, labs-based comparison reviews that propelled PC Magazine to the forefront of the industry and made it the seventh-largest magazine in the United States. He pioneered numerous other innovations that have become standards in computer journalism, such as Service and Reliability Surveys, free utility software, benchmark tests, Suitability to Task ratings, and price/performance charts. Machrone also founded PC Magazine Labs and created the online service PC MagNet, which later expanded into ZDNet. In 1991, when Machrone was appointed vice president of technology, he founded ZD Labs in Foster City, California. He also worked on the launch team for Corporate Computing magazine, was the founding editor of Yahoo! Internet Life, and is working on several other development projects in conventional publishing and electronic media. Machrone has been a columnist for PC Magazine since 1983 and became a columnist for PC Week in 1993.

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      MOST POPULAR ARTICLES

      Artificial Intelligence

      9 Best AI 3D Generators You Need...

      Sam Rinko - June 25, 2024 0
      AI 3D Generators are powerful tools for many different industries. Discover the best AI 3D Generators, and learn which is best for your specific use case.
      Read more
      Cloud

      RingCentral Expands Its Collaboration Platform

      Zeus Kerravala - November 22, 2023 0
      RingCentral adds AI-enabled contact center and hybrid event products to its suite of collaboration services.
      Read more
      Artificial Intelligence

      8 Best AI Data Analytics Software &...

      Aminu Abdullahi - January 18, 2024 0
      Learn the top AI data analytics software to use. Compare AI data analytics solutions & features to make the best choice for your business.
      Read more
      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Video

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2024 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.