Integrations Journal



Security Solution To Businesses With Tokenless Authentication Plus Identity Management

Written by  Sorab Ghaswalla | 25 January 2013
E-mail PDF

securenvoyClients of PasswordBank will now have access to SecurEnvoy, the inventor of tokenless authentication, after the two companies announced a partnership to introduce the tokenless, Two-Factor Authentication capabilities to PasswordBank’s user identity management offering.

Customers will be able to access cloud solutions like Google Apps, Office365 and, through PasswordBank’s single-sign-on platform, using SMS messages for Two-Factor Authentication (2FA), according to a press release. The Silicon Valley-based PasswordBank is an Identity-as-a-Service (IDaaS) platform for secure access to corporate identity.

So what does this entail for clients and their workforce? For one, the partnership delivers business-grade security without users ever having to bother about a physical token. Wherever they are, whichever device they are using to login using the cloud, they can now do so without the token.

The Two-Factor Authentication is a way of verifying a person for who he says he is. It requires the combination of two out of three possible factors – so a username, password or PIN; something you have – a credit card or token, and something you are – fingerprint. The combination of a username and password does not constitute 2FA as they are types of the same factor.

Authentication tokens were first used over 20 years ago. This system calls for the generation of a one-time passcode which can be entered as part of a 2FA process. They are different to PIN numbers, which are static, as the passcode change every time and expire within a set time. However, unlike the original physical tokens of the 80s, today OTPs can be generated by apps on a smartphone or sent via SMS making their use not only easy, but also practical.


Further explaining, Steve Watts, Sales Director of SecurEnvoy, said, “A major benefit of cloud technology is that it frees employees from their workstations, and gives them access to the tools they need, wherever they are and whenever they need it. Knowing how important security is, many companies implement two-factor authentication to ensure that they always know who is accessing their systems at any time. But forcing users to carry tokens around with them defeats the point. By combining the freedom of using SMS messages as the second factor, with the flexibility of the cloud, suddenly workers really do have the freedom they need.”

Dennis Lee, VP of Technology from PasswordBank said, “We have enabled two-factor authentication with tokens for some time, but our clients are starting to demand solutions that are cheaper to implement and deliver more flexibility. By offering the tokenless solution from SecurEnvoy, we can meet the demands from our customers – and we can implement it with our current systems easily.”

SecurEnvoy is the inventor of Tokenless two-factor authentication and has customers across five continents. The product needs a significantly reduced time to deploy, and a zero footprint approach means there is no remote software deployment. SecurEnvoy has customers in sectors like Banking, Finance, Insurance, Government, Manufacturing, Marketing, Retail, Telecommunications, Charity, Legal, and Construction. Its partners include Sophos Astaro, Juniper, Citrix, Fortinet, Sonic Aventail, Cisco, Checkpoint, Microsoft, F5 and others.

[Image Credits: Securenvoy Passwordbank]

Sorab Ghaswalla

Sorab Ghaswalla

Sorab Ghaswalla is the Founder of India-based digital world consultancy firm, New Age Content Services LLP, an Internet Entrepreneur & Consultant, a journalist, and owner/Editor of 2 websites. In his free time, he contemplates the larger implications of digital life.

blog comments powered by Disqus