There was a time when two-factor authentication was a major undertaking. New servers had to be installed, security tokens had to be purchased, distributed and registered to their owners and then Support Desks had to be created to handle queries from users and to service requests for replacements for lost tokens.
The whole process was expensive, and took a great deal of time and planning. It could take months or years to put in place and then required a substantial level of support to keep going.
But since SecurEnvoy launched Tokenless authentication, that has all changed. Now it is possible to set up authentication for a whole organisation in just an hour or two.
No more Specialist Tokens
Instead of needing to carry specialist tokens, users can nominate the device of their choice – usually a mobile phone or tablet they already possess – to receive their one-time passcodes.
In addition, user registration is done using information already stored in the organisation’s own network directory. So there is no need for new special servers to run the service. This means that from a standing start, it is possible to register up to 100,000 users per hour.
The SecurEnvoy service also integrates easily with a wide range of commonly used applications, such as Salesforce. This means that when a user logs on remotely from anywhere in the world, having keyed in their username, password, and their one-time passcode, they gain access to the full range of corporate applications.
In other words, a single sign-on gives them full access as if they were sitting in the office on the corporate network.
Simple User Registration
For the individual user, registration is perfectly simple. Each user receives a 6-digit code to their nominated device which they key in when logging on for the first time, and the process is complete. If they later decide to change their phone or switch to a tablet, they can manage the process themselves easily without having to call a support desk.
Dual Protection from Password Thieves
Most 2FA providers create cryptographic keys called seed records when they distribute OTPs, and these keys contain fundamental security loopholes. In contrast SecurEnvoy has added an extra level of security where they do not themselves generate or save the seed records at any time.
Find out why SecurEnvoy is ‘The Lord of the Keys’
Access the whitepaper to read how two-part seed records solve all safety concerns regarding two-factor authentication.
Request your copy of the Whitepaper: