Is it possible to design a system with two passwords prompts?
- The system will have to prompt for two passwords
- The system would have to validate first password before prompting for second password
- User cannot be prompted for second password until first password is correctly supplied
- The two passwords are stored in the separate DB locations
- AD, LDAP and/or AAA systems will be updated with the same dual password information
This system dual passwords login would be primarily for system logins. The Username and First Password for local login. First and Second password prompts for remote login. The second password will be tied to the Network Interface NIC (i/o interrupt) so that the system would know when a user is attempting to login remotely and when user is logging locally.
I have read this post Two passwords for one account.
Benefit:
- Assuming the system is implemented in home or standalone computer with Internet connectivity, hackers can steal the local password via social engineering or keystroke logging but because the user is not using the second password (remote password), the hacker stealing the local password is useless because he will not be able to login remotely without the remote password. 
- In the network environment (e.g. server) when local Admin password is stolen, hacker also must have to steal the remote password too in order to login remotely. 
 
     
    