TMCnet News
Bash Bug Laughs in the Face of Traditional Password Protection(M2 PressWIRE Via Acquire Media NewsEdge) SecurEnvoy and TechAccess at Infosecurity.nl in Utrecht: Defending networks from malware using two-factor authentication. The ease with which hackers can steal sensitive login details from companies was recently highlighted by the Bash Bug vulnerability, which is also known as Shellshock. Companies that rely only on passwords to protect login procedures risk allowing malware to enter their networks. SecurEnvoy, the inventor of tokenless two-factor authentication, protects against such malware by using additional login security. The flexibility and cost effectiveness of the method will be demonstrated by the company, together with the Dutch distributor TechAccess, from 29 to 30 October at the Infosecurity.nl IT fair in Utrecht (stand A132). Spam, Phishing, Hackers: These will be key topics at the Dutch Infosecurity.nl trade fair. International security experts will gather there to discuss, for example, IT threats such as Bash Bug, Heartbleed, etc. while also showcasing new security solutions designed to eliminate potential sources of risk. One such potential source is the traditional use of simply a password to protect network access - a godsend for hackers. To counter this risk, many companies have now turned to two-factor authentication using dedicated physical tokens such as smart cards. These provide users with further protection as a supplement to their username and password. Using smartphones as malware destroyers However, this method can be very inflexible for businesses in the long run, as staff must always carry these devices with them and they are also easily lost. SecurEnvoy wanted to minimise such overheads and therefore developed an authentication method that does not require costly dedicated tokens. The passcode used for network authentication is provided to users directly on their private smartphones, tablets or other mobile devices via SMS, e-mail, voice call or soft token app. A new option that has recently been introduced by SecurEnvoy is the offline One Swipe function. This technology combines the PIN/password with a one-time QR code. No mobile phone reception or Internet connection is required when logging into a network using One Swipe. The user first enters his/her PIN into the soft token user interface. The smartphone or tablet then generates a one-time QR code. If this code is then scanned using a webcam on a computer or mobile device, One Swipe provides all the information required to authenticate the user: the authentication method is just as simple as it is secure. Visitors to Infosecurity.nl. can discuss issues with SecurEnvoy and its distributor TechAccess, and see One Swipe in action, at stand A132. In addition, posts by the security expert SecurEnvoy about current IT vulnerabilities, such as Bash Bug and Heartbleed, are regularly added to its blog. About SecurEnvoy plc: SecurEnvoy is the creator of patented tokenless solutions for two-factor authentication. Millions of global users already benefit from the fastest mobile authentication process available that doesn't require a token. The process uses commonly available devices like mobile phones, smartphones, tablets and laptops to provide the passcode required for authentication. Even without mobile phone reception or an internet connection, the user can obtain the code via a voice call or enable identification using one-swipe technology, which is based on a QR code scan. The product range of the company based in London (UK), Frankfurt (D), New York and San Diego (USA) includes the SecurAccess solution. The administration tools can easily be integrated into existing IT infrastructures and allow administrators to add up to 100,000 users per hour. SC Magazine awarded the solution 'Best Buy' and the company has been classed as a leading visionary in Gartner's Magic Quadrant. SecurEnvoy has a customer base in all vertical segments, including banking, finance, insurance, government, manufacturing, marketing, retail, telecoms, charity, law and construction. The authentication expert collaborates with partners such as AEP, Astaro, Cisco, Checkpoint, Citrix, Juniper, F5, Palo Alto, Sophos, etc. See http://www.SecurEnvoy.com for further information. Further information: SecurEnvoy Ltd. Steve Watts Sales Director E-mail: swatts(at)securenvoy(dot)com Internet: http://www.securenvoy.com Global HQ: SecurEnvoy Global HQ Merlin House Brunel Road Theale Reading RG7 4AB USA branch I: SecurEnvoy 373 Park Ave South New York, NY 10016 USA branch II: SecurEnvoy Mission Valley Business Center 8880 Rio San Diego Drive 8th Floor San Diego CA 92108 PR agency: Sprengel & Partner GmbH Nisterstrasse 3 56472 Nisterau, Germany Germany Contact partners: Olaf Heckmann Marius Schenkelberg Tel.: +49 (0)26 61-91 26 0-0 Fax: +49 (0)26 61-91 26 0-29 E-mail: [email protected] ms(at)sprengel-pr(dot)com http://www.sprengel-pr.com . (c) 2014 M2 COMMUNICATIONS |