Also, why does paypal allow you to bypass the code completely and answer secret questions (which all friends/family know anyway)?
Also.. it says something like “you can log in using your secret questions this time, but next time you’ll need to enter a code”.. yet it does not act on this. You can login as many times as you want subsequently without entering a code at all.

Ebay does not allow this. If you lose your reader/don’t have it on your persons etc it calls your home telephone number with a new code. It does not allow you to login using secret questions. It seems way more secure. Why is this? Paypal should be more secure than ebay!!! It has my money.. why is ebay more secured?

https://www.paypal.com/us/cgi-bin/?&cmd=xpt/Marketing_CommandDriven/securitycenter/PayPalSecurityKey-outside

Now I am curious. Martin, could you subject your fob to extremes of heat and cold? Just to see if the token’s timing can be thrown off :) You’ll know if your timing is off when the number you enter is not accepted. Of course, this will void your warantee.

Disclaimer, I do not hack, nor do I know how to. I’m just “curious” :)

Glad to hear it worked well for you! The PayPal Security Key and the VeriSign token you received (as well as the VIP Security Card) are all VIP Credentials, which mean they work on any site which is a member of the VIP Network. These sites include eBay, PayPal and AOL — the complete list is available at https://idprotect.verisign.com/wheretouse.v. Being part of a network means that you only need a single device to secure all of these sites, whether you got it from PayPal, directly from VeriSign, or from another network member.

The VIP Credentials from VeriSign use the open standard OATH HOTP algorithm (openauthentication.org), published as IETF RFC 4226 (http://www.rfc-editor.org/rfc/rfc4226.txt). This algorithm is based on HMAC-SHA1, which is a one-way hash function virtually impossible to reverse — http://www.openauthentication.org/pdfs/Attacks%20on%20SHA-1%20FAQ.pdf.

It’s like hashes – you may know exact algorithm, you may know hash value… But you can’t reconstruct original object from hash.

All the fobs should be programmed to generate a number a certain “unique way”. The registration process merely tells Paypal the fob’s “unique way” – the unique key. This way, when the fob generates the number for you to put into your transaction, Paypal will generate the same number and agree with it.

If a phreaker have access to enough fobs, s/he should be able to figure out the algorithm. And when s/he sniffs the traffic, s/he will get the number given by the fob. Enough such numbers from one target, and a phreaker should be able to figure out the key if the algorithm is broken.

Could you please explain why do you think serial code can be sniffed?

I don’t see a single reason serial key must be exchanged between server and client except for initial registration.

Think of the fob as the private key of a PGP encryption that is registered with Paypal once you get the fob. And the number given from the fob is the public key. Once you figure the private key (fob) it’s pretty easy to get it all once you sniff out the public key.

That’s also why fobs sort of died in the banking industry. They’re now looking for physical keys – i.e. the ATM card with the embedded chip, and a customer specific reader to read the ATM card at a registered PC.

Question :
Does the PayPal Security Key work on all PayPal country sites?

Answer :
No. The PayPal Security Key is currently available to eBay and PayPal members registered in the U.S., Australia, and Germany.

As far as I understand this system there is no need to transfer serial code (only once when registering) so there is nothing to sniff. Even if you do sniff one instance of access key – it expires in seconds.

Even if exact algorithm is known it’s no use unless serial for specific account is known, which requires access to physical key… Which is kinda the point. :)