Where strong authentication succeeds
(Thomson Reuters ONE) -
Gartner report vindicates Todos's approach to transaction verification.
GOTHENBURG, SWEDEN - MARCH 17 2010 - "Fraudsters are beating strong two-factor
authentication and are proving that any authentication method that relies on
browser communications can be defeated," says a recent report
Using malware, fraudsters have been able to intercept users' logins and hijack
authorised sessions or overwrite the legitimate transactions with their own.
Even systems that rely on phone or SMS authentication are vulnerable to call
redirection and social engineering.
Gartner makes a number of recommendations to defeat this threat. First, the
report recommends that banks verify individual transactions as well as online
banking logins. Todos'sSign-what-you-see
banks to do exactly that. The user can verify the payee and amount of individual
transactions on selected Todos authenticators and via our onMobile solution.
This makes it harder for criminals to overwrite legitimate user transactions.
Second, Gartner says "enterprises should not deluge users with transaction
verification requests, and should keep them simple and confined to high-risk
transactions, so that users are sure to pay detailed attention to them." Todos
has a solution for that too:Dynamic Signatures
to request additional verification (such as a sign-what-you-see request) for
transactions based on 'riskiness'. So, for example, a small payment to regular
recipient is fine but a large, one-off payment triggers additional
authentication.
Third, the company recommends the use of out-of-band communications that prevent
calls being forwarded. Todos's next-generation connectible smart card readers
support a secure channel between the reader and the bank that bypasses the
browser altogether. This patent-protected innovation calledAutograf
prevents man-in-the-middle attacks.
These technologies - Sign-what-you-see, out of band communication channels and
Dynamic Signatures are also available on smart phones usingTodos onMobile
Secure Domain Separation
unique Todos technology - keeps banking and ecommerce authentication separate so
that a breach in one area does not compromise the other.
"Gartner have done a great service in highlighting the latest threats to online
banking (and other web services)," says Håkan Nordfjell, COO at Todos. "The good
news is that we're doing a good job of defeating these threats. This report
vindicates our strategy in the fight against online fraud."
###
Todos AB helps banks and other businesses create trusted, secure relationships
with their customers online. Founded in 1987, Todos designs, develops, delivers
and supports security solutions for remote authentication. We have delivered
over 20m products to 100+ financial institutions in more than 30 countries. When
trust matters, trust Todos.
For further information please contact:
John Ahlberg, Marketing Director
Todos AB
+46 31 775 88 00
john.ahlberg(at)todos.se
www.todos.se
[HUG#1394762]
PDF - Full Story (ENG): http://hugin.info/141510/R/1394762/351704.pdf
Themen in dieser Pressemitteilung:
Unternehmensinformation / Kurzprofil:
Datum: 17.03.2010 - 05:01 Uhr
Sprache: Deutsch
News-ID 1011484
Anzahl Zeichen: 0
contact information:
Contact person:
Town:
Göteborg
Phone:
Kategorie:
Business News
Anmerkungen:
Diese Pressemitteilung wurde bisher 64 mal aufgerufen.
Die Pressemitteilung mit dem Titel:
"Where strong authentication succeeds
"
steht unter der journalistisch-redaktionellen Verantwortung von
Todos AB (Nachricht senden)
Beachten Sie bitte die weiteren Informationen zum Haftungsauschluß (gemäß TMG - TeleMedianGesetz) und dem Datenschutz (gemäß der DSGVO).
