Insider Threats

Interesting Report from Forrester “Best Practices: Mitigating Insider Threats” published November, 2017. Results from Forrester’s Data Global Business Technographics Security Survey showed that more than half of global network security decision makers, whose firms had suffered a data breach in the past 12 months, had experienced at least one insider incident. The report shows that the human motivation of revenge, greed or ideology are persistent and weak technology aids and abets. Specifically, if a User can easily repudiate access– someone must have taken a picture of my iris, I lost my U2F and they could not disable it, SMS isn’t secure – then there is no deterrent. The Insider Threat is not just confined to an organisation’s internal employees- if the Authentication Technology relies on a fixed secret then the Security Manufacturer is part of the risk. CASQUE SNR Authentication is not based on a fixed secret and denies user access repudiation.

Low Cost Multi-factor Authentication!

The recent publication of the analysis of Multi-factor Authentication Products found in US NIST 2017 Digital Identity Guidelines makes very interesting reading!

CASQUE SNR fulfils the description of “Multi-factor Cryptographic Hardware Device able to address Assurance Requirements at Level 3” – the highest level.

CASQUE SNR doesn’t need any other supporting methods as Section 4.5 Summary of Requirements in the above document explains.

The overall cost of Ownership for Organisations wanting the highest assurance is therefore smaller with CASQUE SNR than those methods such SMS and OTP that need reinforcement from multiple other authentication methods.

Corporate Vision Magazine has announced the winners of the 2017 Technology Innovator Awards.

We have won another award –

“Best Identity Assurance Authentication Technology: CASQUE SNR”

Corporate Vision Magazine has announced the winners of the 2017 Technology Innovator Awards.

Now celebrating its third year, the Technology Innovator Awards return in 2017 to showcase the talented individuals, teams and firms that form the backbone of this dynamic industry.

We aim to raise the profile of those who’s innovative thinking and commitment to technology make the industry what it is today.

Laura Hunter, Awards Co-ordinator, commented: “Technology is vital to everyday life, therefore it has been a real pleasure to be able to showcase those dedicated to making innovations happen. I would like to congratulate my winners and wish them the best of luck going forward.”  

Corporate Vision Magazine 2017 Technology Awards

Many MFAs need Support!

The recent document – NIST Special Publication 800-63B, Digital Identity Guidelines, Authentication and Lifecycle Management dated June 2017 makes interesting reading – it places out of band (SMS messages) in the lowest category of Authentication Assurance Levels with OTP only slightly better.

CASQUE SNR easily fulfils the criteria of a “Multi-factor Hardware Crypto Device” as defined in NIST 800-63B and so is able to be employed for applications demanding the highest assurance level without requiring multiple other methods.  It is the only Multi-factor Authentication product certified by UK’s NCSC as suitable for secret.

If you would like a detailed exposition of the weakness of existing MFA techniques just use the contact form.

Another Biometric Authentication falls over

Biometric Authentication isn’t the bee’s knees or its irises or its sound.
Biometrics is deprecated as a means of Authentication in NIST Digital Identity Guidelines, not only because of some amusing cases:
BBC fools HSBC voice recognition security system;
Lyrebird claims it can recreate any voice using just one minute of sample audio;
Researcher shows malware can make headphones into microphones and record voice:
but because it fails the rule of high assurance systems- “must always be able to recover from compromises” (despite the great advances in organ transplant surgery).

Identity Assurance in Canada

Distributed Management Systems is delighted to welcome BTI Global Innovation as our Distributor for CASQUE SNR Products in Canada.

BTI Global Innovation Inc. is a full service international business development and consulting services company, serving government, International Investment Promotion organizations, Economic Development Agencies, Research Institutions and industry clients in the ICT, advanced engineering, aerospace, defence,  security and cyber security sectors in North America and Internationally.

The contact is Bernadette Terry