SecurEnvoy and PasswordBank join forces on single sign-on for cloud services

The two companies use mobile phones for two-factor authentication

SecurEnvoy and PasswordBank have joined forces to allow users to access multiple cloud services at the same time using their mobile phones.

Enterprise users can access cloud services such as Google Apps, Office365 and Salesforce.com through PasswordBank's single sign-on platform, using SecurEnvoy's mobile phone-based two-factor authentication.

Two-factor authentication is a safer way of verifying a person is who they say they are. It combines something users know -- for example a user name, password or PIN code -- with something they have, which can include a card, a fingerprint, a hardware token, or in this case a mobile phone. The latter two are used to create one-time passwords, which add an extra layer of security compared to authenticating users with just passwords.

Enterprises can either choose to install an application on employees' smartphones, as well as other types of devices, that creates the one-time passwords or use text messages to distribute them, according to Steve Watts, co-founder and sales director at SecurEnvoy.

SecurEnvoy also allows users to change the device they use to create or receive the one-time password. But only one device can be used at a time, Watts said.

The popularity of using an application versus text messages to distribute the one-time passwords differs greatly in different parts of the world. In Europe, the split is about 60-40 favoring SMS, while the application route is favored by a large majority of U.S. users, Watts said. In many other parts of the world, including South America, India and Africa, SMS dominates, he said.

Send news tips and comments to mikael_ricknas@idg.com

Tags: consumer electronics, PasswordBank, security, Access control and authentication, smartphones, SecurEnvoy, internet, cloud computing, mobile, mobile applications

How to keep your smartphone (and its data) secure

READ THIS ARTICLE
DO NOT SHOW THIS BOX AGAIN [ x ]
Comments are now closed.
CSO Corporate Partners
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

SECURE Email Gateway

Clearswift SECURE Email Gateway is an effective and resilient email gateway for 50 to 50,000 users.

Latest Jobs
Security Awareness Tip

Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).


  1. Have an incident response plan.

  2. Pre-define your incident response team 

  3. Define your approach: watch and learn or contain and recover.

  4. Pre-distribute call cards.

  5. Forensic and incident response data capture.

  6. Get your users on-side.

  7. Know how to report crimes and engage law enforcement. 

  8. Practice makes perfect.

For the full breakdown on this article

Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.