AndhraNews.net
Home » Business News » 2011 » June » June 8, 2011

ActivIdentity Offers Enterprise Leaders Three Keys to Success in Addressing Current Outbreak of Security Breaches


June 8, 2011 - FREMONT, CA

ActivIdentity Corporation, a global leader in secure identity solutions, recently acquired by HID Global, today unveiled the company's recommendations to enterprise for strong authentication. The company revealed best practices for avoiding enterprise security breaches, such as Advanced Persistent Threats (APT), which are driving current industry headlines.

APTs concertedly probe the same target for weaknesses, until they get in, then seek to branch out inside an organization's network to maximize data theft. While APTs use a variety of tools, recent studies suggest almost half of all data breaches exploit stolen or weak credentials. Once inside, hackers attempt to expand their privilege levels by compromising additional accounts. Too many organizations rely on older-generation perimeter defenses and have weak internal authentication, which is why this strategy has been so effective.

ActivIdentity executives point to three keys to improving enterprise security:

1. Utilize far more secure, easily deployable, affordable and convenient smart card solutions which represent the most logical choice for an authentication device in dealing with most threats. Smart cards control access to PCs, servers, VPNs and potentially cloud-based apps for strong, multi-layered authentication.

2. Employ stronger one-time-password (OTP) tokens with algorithms based on multiple variables (seed key, time, and event counter) which are more resistant to compromise than older traditional tokens which use fewer variables, hence less protection.

3. Protect OTP token seed files with strong encryption and initialize tokens and smart card keys locally.

"While no single solution or practice can protect the enterprise from every attack, the current threat matrix unfolding in headlines across the world validates ActivIdentity's approach in making smart cards readily available, even to medium-sized enterprises, through our ActivID™ CMS appliance," said Julian Lovelock, ActivIdentity's senior director of product marketing. "ActivIdentity also offers more advanced OTP tokens leveraging three-variable algorithms (seed keys, time and event data), which are less vulnerable to hacking as well as enabling customers to initialize their own tokens, rather than relying on the keys loaded by the vendor."

ActivIdentity's 4TRESS™ Authentication Server enables enterprise to add other protocols to OTP, such as SMS out of band, and offers secure remote access from laptops and smartphones.

"Recent headlines have certainly heightened awareness and concerns about the frequency and cost of targeted attacks, particularly among mid-size to large enterprises," said Derek Brink, vice president and research fellow for IT Security at Aberdeen Group. "Traditional boundaries between the enterprise IT infrastructure and public IT infrastructure have become so porous -- e.g., in support of email, web access, web applications, encapsulated protocols, and mobile devices such as laptops, smartphones and tablets -- that although a strong perimeter defense may still be necessary, it is no longer sufficient to protect against the most sophisticated threats."

ActivIdentity begins a blog series in June, which will address the latest breaches and evolving online security threats to enterprise, government and banking.

About ActivIdentity
ActivIdentity™ Corporation is a global leader in secure identity solutions, enabling customers to confidently establish trust in online activities. Over 2,500 enterprise, online banking and government organizations rely on ActivIdentity's authentication and credential management solutions to meet their security and compliance requirements. ActivIdentity is headquartered in Silicon Valley, California. ActivIdentity is part of HID Global, an ASSA ABLOY Group brand. For more information, visit www.actividentity.com.

ActivIdentity and 4TRESS are registered trademarks in the United States and/or other countries. All other trademarks are the property of their respective owners in the United States and/or other countries.

Add to Digg Bookmark with del.icio.us Add to Newsvine

ActivIdentity Media Contact:
Donna Candelori
Director, Corporate Marketing
T +1 510.574.1783
dcandelori@actividentity.com

Scott Montminy
InkHouse
T 1.781.791.4553
scott@inkhouse.net

Mital Goel
Spreckley Partners Ltd.
T +44 (0)207.388.9988
goel@spreckley.co.uk

MarketWire

Comment on this story

Share