If WEB is the WAY, why should Strong Authentication be the prerogative of the select few internet users..
The gap in security that currently exists is the lack of strong authentication services integrated with the personal computers being sold. Even more, its very difficult to have a standardization of such services if they were to be offered integrated with computing devices manufactured by various vendors.
Usually, the WEB/INTERNET service provides (such as a bank's internet banking, an auction or shopping portal or e-trading service provider) would like to manage their authentication security based on the demography, nature of its account holders and thereby resist expensive means of authentication - namely HARDWARE BASED.
The less than average acceptance (forget about purchase) of the $5 Hardware tokens launched by PayPal reflects the dilemma in which such 'e' services companies are in the wake of increased hacking and internet thefts. With demographic barriers broken with e-services and customers spread around the globe - authentication solutions that rely on out-of-band delivery of authentication credentials is also not a viable option. Moreover, customers are reluctant to beeline for an online service where they need to PAY (per USE) for the security of its services.
The Web2.0 not only relaunched the internet with abundant business opportunity for service providers but also introduced a fierce competition for service providers to offer a secure, reliable and any-time-anywhere experience.
In the meantime when there is no ubiquity of integrated hardware support for all customers of an e-service provider and no offset to the COST of provisioning such security to its customers, a lookout for effective and low cost authentication solution is a desperate need rather than an option.
Some really nice functional features of an authentication solution:
1. Does not expect customers to make a JUDGMENT on the integrity or safety of a transaction
2. Relies least on the decision making ability of customer in matters os security
3. Protects the ARCANE - Phishing attacks and also thwart the new wave of Man-in-he-Middle, Pharming, Trojan, Keylogger attacks
4. Tackles security equally a personal computer environment or a shared PC or Public terminal used by the customer
5. The strong authentication introduced should not hinder the anytime-anywhere experience of a web service
EZMCOM's breakthrough technology and continued innovation serve the company's mission of "simplifying security and making it universally accessible and useful." The Company has persistently pursued innovation and pushed the limits of existing technology to provide strong, commercially viable and easy-to-use security solutions. We aim to redefine how individuals, businesses and technologists view security for the Internet channel for commerce.
We build solutions for the above P.A.I.N. (you may read - Privacy, Authentication, Integrity and Non-Repudiation) troubling the web-services in this era of Internet ubiquity.
Keep watching this space as we unveil the solutions from EZMCOM...
Labels: 2FA OTP MITM Authentication Security
