Customers will be able to access cloud solutions like Google Apps, Office365 and Salesforce.com, through PasswordBank’s single-sign-on platform, using SMS messages for Two-Factor Authentication (2FA), according to a press release. The Silicon Valley-based PasswordBank is an Identity-as-a-Service (IDaaS) platform for secure access to corporate identity.
So what does this entail for clients and their workforce? For one, the partnership delivers business-grade security without users ever having to bother about a physical token. Wherever they are, whichever device they are using to login using the cloud, they can now do so without the token.
The Two-Factor Authentication is a way of verifying a person for who he says he is. It requires the combination of two out of three possible factors – so a username, password or PIN; something you have – a credit card or token, and something you are – fingerprint. The combination of a username and password does not constitute 2FA as they are types of the same factor.
Authentication tokens were first used over 20 years ago. This system calls for the generation of a one-time passcode which can be entered as part of a 2FA process. They are different to PIN numbers, which are static, as the passcode change every time and expire within a set time. However, unlike the original physical tokens of the 80s, today OTPs can be generated by apps on a smartphone or sent via SMS making their use not only easy, but also practical.
Further explaining, Steve Watts, Sales Director of SecurEnvoy, said, “A major benefit of cloud technology is that it frees employees from their workstations, and gives them access to the tools they need, wherever they are and whenever they need it. Knowing how important security is, many companies implement two-factor authentication to ensure that they always know who is accessing their systems at any time. But forcing users to carry tokens around with them defeats the point. By combining the freedom of using SMS messages as the second factor, with the flexibility of the cloud, suddenly workers really do have the freedom they need.”
Dennis Lee, VP of Technology from PasswordBank said, “We have enabled two-factor authentication with tokens for some time, but our clients are starting to demand solutions that are cheaper to implement and deliver more flexibility. By offering the tokenless solution from SecurEnvoy, we can meet the demands from our customers – and we can implement it with our current systems easily.”
SecurEnvoy is the inventor of Tokenless two-factor authentication and has customers across five continents. The product needs a significantly reduced time to deploy, and a zero footprint approach means there is no remote software deployment. SecurEnvoy has customers in sectors like Banking, Finance, Insurance, Government, Manufacturing, Marketing, Retail, Telecommunications, Charity, Legal, and Construction. Its partners include Sophos Astaro, Juniper, Citrix, Fortinet, Sonic Aventail, Cisco, Checkpoint, Microsoft, F5 and others.