Feb 25, 2014 08:43 GMT Trustly Swedish online payments company Trustly Group has won Spain’s CIT Golden Card award for...
Department of Defense Contractors Replacing Legacy Two-factor Authentication with YubiKey
YubicoNov 09, 2011 11:02 GMT
PALO ALTO, Calif. and STOCKHOLM, Nov. 09, 2011 – Yubico, the leading provider of simple, open online identity protection, today announced a rapid increase of YubiKey orders from U.S. Department of Defense (DOD) contractors to replace legacy two-factor authentication tokens. The growing business within the defense sector validates the unique, high security processes provided by Yubico.
Leveraging technology designed for all vertical industries, including energy, technology, and government, the YubiKey serves as the key part of two-factor authentication solutions for U.S. defense organizations searching for simple and secure access to networks and cloud applications.
“Reinforcing our commitment to providing the most easy-to-use and dependable authentication products, Yubico technology, security processes and technical transparency are gaining acceptance by organizations with the highest security requirements,” said Stina Ehrensvard, CEO and founder of Yubico.
Earlier this year, a database with millions of RSA SecurID customer secrets was hacked in a major security breach. This breach raised concerns about the security processes for one time password (OTP) tokens. As a result of the incident, Yubico was contacted by DOD contractors performing audits for hardware OTP tokens as a vendor not affected by the breach.
The DOD contractors required that no copies of token secrets were stored at manufacturing facilities, or at any third party that could potentially break the security, as it apparently happened at the RSA breach. The tokens needed the ability to be easily programmed at their own facilities and the server software required technical transparency, ensuring there was no hidden weakness. The YubiKey was the only authentication product that met these requirements.
Manufactured by robots in Sweden, the YubiKey USB authentication key simplifies the process of logging in with an OTP token, eliminating the need to re-type long pass codes from a display device. The YubiKey is practically indestructible and fits easily on a keychain. It works on all computers and platforms without the need for installing client software.
The RSA breach also highlighted the need to secure servers, including the secrets used to generate one time passwords, from remote attack. In addition to the YubiKey, Yubico reports an increase of orders for the YubiHSM, Yubico’s newly launched and the market’s most cost-efficient Hardware Security Module for protecting secrets on servers.
Please visit yubico.com/YubiKey and yubico.com/yubiHSM for more information.