Step 1
Enter your username and password just like you do today.

Step 2
Instantly, PhoneFactor sends you a text message with a one-time passcode. To authenticate, simply text the passcode back to PhoneFactor.

That’s it! Because the one-time passcode is both sent and confirmed through SMS, the process is completely out-of-band.

Now users can choose the two-factor method they prefer, phone call or SMS text message, all with the same level of out-of-band security and convenience. This enables the ultimate flexibility for your users and a single platform for your IT team to manage.

Learn more about sms authentication. Or try it yourself in our Online Demo.

- Sarah

March 1, 2010 – PhoneFactor, a leading global provider of multi-factor security services, has expanded its two-factor authentication platform to include support for out-of-band authentication via SMS text messaging – the first platform of its kind. Leveraging its phone-based authentication platform, PhoneFactor can now verify users by sending a one-time Passcode via an SMS text message, giving users the option to verify identity through a phone call or text message.

With the new SMS-based platform, PhoneFactor sends the user a text message containing a one-time Passcode. The user replies to the message by texting back the one-time Passcode to complete the authentication – a simple, secure and completely out-of-band process.

PhoneFactor’s new offering gives users the flexibility to decide the authentication method that best meets their needs and personal preferences. By adding SMS Authentication to the PhoneFactor platform, users choose either a phone call or text message – all with the same level of out-of-band security and convenience. In addition, PhoneFactor’s SMS Authentication offers:

• 100% Out-of-Band Authentication – Instead of placing a voice call to the user, PhoneFactor SMS Authentication sends a one-time Passcode to the user’s mobile phone via an SMS text message. The user sends a text message reply that contains the one-time Passcode to authenticate, and because the one-time Passcode is both sent and confirmed through SMS, the process is completely out-of-band.
• Standard One-Time Passcode Authentication – Instead of replying to the SMS text message, organizations can allow users to enter the one-time Passcode directly into the login interface. As with a security token, the user must enter a one-time Passcode to verify the possession of a trusted device – but unlike tokens, PhoneFactor leverages a device the user already has – their phone.
• PIN Security – SMS Authentication users can add an additional layer of protection by requiring users to provide a personal identification number (PIN) in addition to the one-time Passcode to authenticate. Users can be prompted to include their PIN along with the one-time Passcode when replying to the text message or to enter it into the login interface.
• Support for Transaction Verification – Details about pending transactions can be provided in the SMS text message that is sent to the user. In the event that a user’s authenticated session has been hijacked, the attacker cannot complete a transaction without the user’s explicit approval.

“PhoneFactor’s new SMS Authentication platform provides not only the security users need, but does so in a convenient and easy-to-use fashion,” said Tim Sutton, CEO of PhoneFactor. “By offering a completely out-of-band security solution, PhoneFactor provides users – whether enterprise companies, banking and financial services organizations or government agencies – with the peace of mind they need and a solution they can trust.”

• We recently launched Biometric Voice Authentication, making three-factor authentication both easy and cost-effective. PhoneFactor’s Biometric Voice Authentication delivers the strongest level of authentication without the overhead typically associated with biometrics. The user’s voiceprint is simply confirmed during the PhoneFactor authentication call.
• We will also be unveiling another exciting addition to the PhoneFactor platform during show.

And don’t miss PhoneFactor CTO Steve Dispensa’s panel discussion on responsible disclosure.
Responsible Disclosure: It’s Their Fault!
Wednesday, March 3rd, 10:40 AM, Orange Room 305

Don’t miss – Responsible Disclosure: It’s Their Fault!
Wednesday, March 3rd, 10:40 AM, Orange Room 305

Catch a sneak peak of the discussion with Martin McKeay and Steve Dispensa.
Listen Online | Download Podcast <8:51>

And be sure to stop by the PhoneFactor booth Booth #1757.

- Sarah

PhoneFactor will deliver their globally available award-winning authentication services, and Cybernet Systems will be responsible for marketing, sales, and technical support in Japan starting in early Q2 2010.

“PhoneFactor is excited about our partnership with Cybernet Systems to provide a strong authentication platform to customers in Japan,” said Tim Sutton, CEO, PhoneFactor. “This international expansion and adoption is an exciting next step for our company, and one that speaks volumes about the need for simple, affordable two-factor authentication in all industries worldwide.”

Since its foundation, Cybernet Systems has built its solutions business around distributing best of breed software and services, such as WebEx and Checkpoint, to a large base of clients throughout Japan.

“Security is a high priority for our customers and two-factor authentication is critical to protecting access to their networks and data,” said Mr.Kyuetsu Mihira, senior managing director, Cybernet Systems. “After reviewing a number of two-factor authentication solutions, we found that PhoneFactor’s phone authentication platform provides the strong security our clients need without the cost and administration required of other authentication methods. PhoneFactor will add a critical additional layer of security for our clients, helping mitigate the risks posed by an increasingly sophisticated threat landscape.”

About Cybernet
Cybernet Systems provides a wide range of cutting-edge technology software solutions, educational services, technical support and consulting services in various fields. The company responds to diverse customer needs by promoting a wide range of world-class software for structural, acoustic, mechanical, control system, communications system, illumination analyses, signal processing and optical design. For more detail about Cybernet Systems, please visit their web site at: www.cybernet.co.jp.

- Sarah

Step 1
Enter your username and password just like you do today.

Step 2
Instantly, PhoneFactor calls you. Simply answer and speak your passphase to authenticate.

That’s it! The process is simple, secure, and cost-effective.

With IT security threats at an all-time high, utilizing three separate factors to authenticate user access is a necessity for many organizations. However, most biometric solutions require a biometric reader, such as a fingerprint scanner, be installed on each end user’s system. The cost and IT resources required to purchase and deploy biometric readers created an often insurmountable challenge.

With PhoneFactor, no biometric readers are required – it works with any phone. And with automated voiceprint enrollment and centralized user management, it can be set up quickly for large numbers of geographically diverse users.

Learn more about biometric voiceprint authentication.

- Sarah

“PhoneFactor is making biometric verification for phone-based authentication available to banks, government agencies, healthcare firms and other businesses. Users execute a transaction online, then are called by the institution if that transaction is considered high risk based on the institution’s policies— similar to many dual authentication techniques. Only in this case, the voice also serves as a third way to identify the consumer.”

Read the full article at http://www.americanbanker.com/bulletins/-1006143-1.html

January 19, 2010 - PhoneFactor, a leading global provider of multi-factor security services, announced today the availability of biometric verification for its phone-based authentication platform. By leveraging an existing voice channel, the new offering simultaneously verifies something you have, your telephone, and something you are, your voiceprint, for the second and third factors of authentication.

With IT security threats at an all-time high, utilizing three separate factors to authenticate user access is more than a best practice. For many organizations, it is a necessity. However, in most cases a biometric reader, such as a fingerprint scanner, must be installed on each end user’s system. The cost and IT resources required to purchase and deploy biometric readers created an often insurmountable challenge.

With PhoneFactor’s new offering, no biometric readers are required. The user’s voiceprint is simply verified during the PhoneFactor authentication call. The process is simple, secure, and cost-effective.

• Simple for End Users and IT Administrators – Users simply receive a call when logging in. They answer and speak their passphrase to complete the login. That’s it. For IT administrator, the process of enrolling users is equally simple. Voice authentication services can be enabled for all or just specific users. Once enabled, users can enroll through the PhoneFactor User Portal or during their first authentication call. To complete the enrollment, users just record a passphrase.
• Strong, Reliable Biometric Verification – Like a fingerprint, each individual’s voice is unique and has characteristics, such as pitch and rhythm, which can be mapped and used to verify identity. PhoneFactor’s proven voice mapping model uses multiple voiceprint algorithms to ensure that authorized users can be verified regardless of environmental factors, like excess noise or minor voice variations, while keeping unauthorized users from being authenticated. The authentication call is out-of-band offering protection from man-in-the-middle attacks and keystroke loggers.
• Low Total Cost of Ownership – Because there are no tokens and no biometric readers to buy, deploy, and support, both the initial and ongoing costs for PhoneFactor are materially lower than other multi-factor authentication systems.

“Utilizing all three factors to authenticate users provides the maximum level of protection,” said Steve Dispensa, CTO, PhoneFactor. “PhoneFactor’s voice authentication service makes this easier and more cost effective than ever – putting greater security within reach of enterprises, banking and financial services organizations, and government agencies.”

Learn more about PhoneFactor Biometric Authentication.

“Currently, most two factor authentication technologies require the user to have a physical smart card or token. But what if there was an alternative – and there is.”

Read the full article at http://gcn.com/microsites/voip/voip-hearing.aspx