Good Vault launches two-factor authentication for iPhones

iPhones would use sleeves to read smart cards and microSD cards

Good Technology announced Good Vault, a system for adding two-factor authentication to the iPhone 4 and 4S for access to Good for Enterprise email.

One of the Good Vault options features a smart-card reader that can be attached to an iPhone. In order to gain access to Good email, a user must slide a smart card in the sleeve and then type in a PIN. (Photo by Good Technology)

The system will be especially valuable for government agencies and companies in highly regulated industries, such as healthcare and financial services, where it's critical to ensure that data is protected from unauthorized users if an employee's smartphone is lost or stolen, said Good Technology CTO Nicko van Someren.

With the Vault system, one of two sleeves is attached to the iPhone: One that can read a smart card or one that can read a microSD card, he said. Once either of the sleeves is in place, inserting the microSD or smart card becomes one component of the two-factor identification process, while typing in a PIN is the second. Once authenticated, users would have access to Good for Enterprise email.

If a phone is lost or stolen while the microSD or smart card is inserted in the sleeve, the PIN would still be needed for access to Good for Enterprise email. Good's management software supports remote wipes of data from smartphones.

Good hopes to expand its Vault technology to support other applications besides email. The company also aims to offer Vault systems for iPads and Android devices, van Someren said.

The Good Vault iPhone application will be available for download in Apple's App Store (pricing has not been announced), but end users cannot use it unless they are licensed for Good for Enterprise and Good Vault.

Precise Biometrics developed Vault's smart-card reader, a sleeve for the iPhone that weighs just 1.5 oz. The microSD reader was developed by HID Identity Assurance. A user's identity credentials and encryption keys would be embedded in the Secure Element chip in the smart card or microSD.

While smart-card readers and microSD readers are already on the market, they are generally stand-alone offerings and are considered cumbersome to use, Good officials said.

Good Vault is the first offering in Good's new line of Good Trust security products for identity and access management.

Good has more than 4,000 enterprise customers; Gartner and other analyst firms consider it to be one of the leading vendors of mobile device management systems.

Matt Hamblen covers mobile and wireless, smartphones and other handhelds, and wireless networking for Computerworld. Follow Matt on Twitter at @matthamblen, or subscribe to Matt's RSS feed. His email address is mhamblen@computerworld.com.

See more by Matt Hamblen on Computerworld.com.

Read more about mobile device management in Computerworld's Mobile Device Management Topic Center.

Join the CSO newsletter!

Error: Please check your email address.

Tags AppleMobile/WirelessMobile device managementNetworkingsecuritymobile securitywirelessGood Technologymobile

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Matt Hamblen

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts

Market Place