Tom Gagnon

Idea: hardware key authorization

Discussion created by Tom Gagnon on Apr 20, 2018

First off, I'm sorry if this is miscategorized. I believe that this functionality would require API's, but lack direct understanding. Maybe it applies more to EPDM. I'll move it  if prompted to do so.


I've been using a Kubikey, a USB hardware crypto-key for two-factor authentication (2FA) in communications where applicable. (Note that redundancy is important if you're going to require a physical object which can be lost or destroyed, an anti-Murphy precaution.) It got me to thinking of how this item could be used to interact with Solidworks.



This is pretty far "out there," as it seems like a specific impediment of ease or improvement to security which solves problems of which no one is complaining. I am thinking well outside the box of normal workflows and simple use, to discuss and anticipate innovation.


Would there be any way, either currently via API's or EPDM, or in the future with new release features, to enforce power-user or administrative status:

* Identify authorized user by credentials and additional hardware 2FA?

* Lock source files so that only power-users can alter components, but normal users could produce and edit drawings?

* Prevent unapproved Printing or 3D Printing or CAM productions?

* Something else you'd like to achieve?


There are ways to control data processes within user management and EPDM. I.e., trainees or interns can be a User Group which lacks write-access to library files so that novices don't self-destruct your assemblies. Does this idea already fall under EPDM capabilities?

Does EPDM already allow use of 2FA?

Can you think of any applicable use to securely authorize a user to perform some task? Many businesses have convoluted procedures already, and this idea could either complicate or simplify an existing authorization procedure. YMMV.


Is this just unrelated to anything in SWx and a waste of time to even consider? New tools and ideas (Change) can be a problem or opportunity.

I reproduce a sidelong relevant contribution to the Quotes thread: "Do not fear to be eccentric in opinion, for every opinion now accepted was once eccentric." - Bertrand Russell