By David Hald, Chief Relations Officer
The workforce is becoming increasingly mobile, offering greater convenience and productivity for employees on the go. However, this shift has created significant security concerns as well. Providing remote access to business applications and data can become a real IT headache as people move from one location to the next and log in from a variety of mobile devices.
This week Citrix announced that “Contextual Security is Key to Enabling Business Mobility,” which has been a key element in SMS PASSCODE’s strategy for years. In fact, SMS PASSCODE was recently awarded a patent, which we filed in 2008, for a “system detecting and protecting against identity theft by abusing a computer user’s ID and password…via a second authentication level using…a one-time-passcode and user contextual location information.”
Unfortunately, the world that Citrix describes where “…security is not keeping pace with today’s threat landscape” is all too real. A recent report published by Recorded Future revealed a shocking fact that 221 of the U.S. Fortune 500 companies have exposed user credentials on the web. The growing amount of network breaches show all too clearly that the bad guys are getting increasingly more sophisticated and, therefore, the good guys (like us) are adapting to deliver more intelligent security in response.
Today, SMS PASSCODE can make advanced adaptive and contextual authentication for most vendors’ solutions. Citrix in particular has supported this strategy by adding features to its Netscaler products that enable SMS PASSCODE to identify the user’s location and thereby determine whether this user has the right to log on via Netscaler or not from this particular location. Furthermore, SMS PASSCODE has methods to identify from where the attackers are trying to compromise your security. Moreover, once identified, SMS PASSCODE can be used to blacklist that particular location. We are noticing a trend in the authentication space toward whitelisting users rather than blacklisting them. This essentially means that instead of letting anyone log on to any system from anywhere, one begins to map out who needs access to which systems from where, and then essentially lock down any other access than the one identified as needed.
In this age of weekly headlines detailing yet another security breach, securing the mobile workforce is an absolute business necessity. But it doesn’t have to be a huge IT headache.
Read on to learn more about SMS PASSCODE’s unique adaptive multi-factor authentication.