-
IT in Europe, Security Edition: Password security standards and trends
Passwords have long been a security problem. This IT in Europe: Security Edition looks at password trends and alternative forms of authentication. Learning Guide
-
Alternatives to passwords: Replacing the ubiquitous authenticator
As the relative security of passwords falters, are they destined for obscurity? Feature
-
Creating a secure platform for smart card programmers
Royal Holloway authors discuss a new architecture for trusted computing in which an existing fixed-function Trusted Platform Module (TPM) is coupled with user application code running on a programmable smartcard. Royal Holloway eBook Seri
-
Information Security Learning Guides
A repository of our Learning Guides. SearchSecurity.com's Lear
-
Quiz: Next-generation authentication
A five-question multiple-choice quiz to test your understanding of the content presented by expert Mark Diodati in this lesson of SearchSecurity.com's Identity and Access Management Security School. Quiz
-
RSA Conference 2006
Can't make it to RSA 2006? Check out our continuous coverage from the show floor. Conference Coverage
-
NHS smart card devices enable secure access to health care apps
Thanks to the NHS smart card programme and some creative middleware, four health trusts in North London have found an inexpensive way to offer secure access to health care applications. Article | 01 Sep 2010
-
Two-factor authentication helps charity comply with PCI DSS
Two-factor authentication is a must for any company that needs to comply with the Payment Card Industry Data Security Standard. Find out how one company implemented token-based authentication and how it overcame any rollout issues. Article | 22 Mar 2010
-
Gridsure finds global deal for its pattern-based authentication
Following a licensing agreement with CryptoCard Inc., Cambridge-based GrIDsure Ltd. has received a major boost for its pattern-based authentication. Article | 28 Dec 2009
-
Single sign-on software removes chaos and aids password management at East Kent NHS Trust
Until a recent single sign-on implementation, 8,000 members of staff at East Kent Hospitals University Foundation NHS Trust were drowning in a sea of different passwords that they needed to access various parts of the network. Article | 25 Nov 2009
-
Tokenless two-factor authentication helps council with CoCo compliance
Instead of equipping remote workers with security tokens, a Scottish council has found a cost-effective way of sending authentication codes to its employees' mobile phones. Article | 12 Nov 2009
-
Chip and PIN adoption serves lesson for U.S. payment industry
As payment processors offer plans for end-to-end encryption, the UK is finding success with chip and pin deployments. The U.S. payment industry should take notice, expert says. Column | 29 Oct 2009
-
Visa probes tokens, encryption for PCI card data protection
Visa issued payment industry best practices that outline the use of encryption and tokenization to protect credit card data. Article | 07 Oct 2009
-
Strong authentication methods, voice recognition systems make comeback
Two new technologies are bringing down costs and making it easier for companies to extend control out to customers and business partners. Article | 17 Sep 2009
-
Portable security storage device could replace OTP devices
A new USB-like device, hardened with security features, could overtake one-time password devices and give end users flash memory to carry around encrypted data. Article | 16 Mar 2009
-
Brits accept biometrics to prevent rise in identity theft
According to a recent survey, the British proved to be the most open-minded about new biometrics technologies, including eye scans and face recognition. Article | 21 Nov 2008
- See More: News on Biometrics, Smart Cards, Tokens
-
RFID projects: Implementation considerations, RFID security concerns
RFID projects can aid organisations in many ways, including improving physical security. Learn more in this tip from Michael Cobb. Tip
-
Network password security: Following password policy best practices
Regularly updating network password policies to keep pace with threats is essential to enterprise security. Learn about password policy best practices in this tip. Tip
-
SMS two-factor authentication for electronic identity verification
Tokens are no longer the only choice when it comes to OTPs and electronic identity verification. Learn about new two-factor authentication options involving SMS and mobile phones. Tip
-
Single sign-on (SSO) authentication can help prevent password fatigue
Michael Cobb reviews first steps for establishing a federated environment where users sign into a system once and are able to access multiple services controlled by third parties. Tip
-
Security on a budget: How to make the most of authentication tools
Working on an identity and access management project can be hard enough without having to worry about sufficient funding. In this tip, learn how to leverage existing identity and access management tools and software to keep your budget lean and your ... Tip
-
Integrating biometric authentication with Active Directory
Integrating biometrics with an existing enterprise IAM architecture was once a trying task, but it's much easier today because many biometrics products are designed to work hand in hand with Active Directory. Joel Dubin explains what Active Directory... Tip
-
Enterprise security in 2008: Assessing access management
Access management troubles were hardly few and far between in 2007, and according to IAM expert Joel Dubin, access management challenges aren't going away in 2008. In this tip, Dubin outlines this year's key issues, including remote access, provision... Tip
-
Smart card deployment: How to know if it's smart for your enterprise
Smart cards are an efficient way to combine credentialing for logical and physical access, but the implementation process isn't easy. In this tip, contributor Joel Dubin discusses multiple aspects of smart card installation and deployment, and unveil... Tip
-
Preparing for integrated physical and logical access control: The common authenticator
In an enterprise setting, who wouldn't want a simple, single credential that provides entry to the office building, access to corporate resources and proper management of the user life cycle? Not so fast, says analyst and contributor Mark Diodati. Im... Tip
-
Compliance benefits of tokenization
If your organization handles credit card data, then it's probably already heard about the benefits of tokenization. However, as Joel Dubin explains, tokenization not only keeps confidential data out of the hands of malicious hackers, but also offers ... Tip
- See More: Tips on Biometrics, Smart Cards, Tokens
-
Will physical security integrators work with IT departments?
Expert Neil O'Connor shares a recent project that demonstrates how IP-enabled physical security may be changing the market. Ask the Expert
-
Token authentication vs. biometric authentication systems
In this expert response, Ken Munro discusses the pros and cons of using both biometric authentication systems and token-based systems. Ask the Expert
-
What precautions should be taken if biometric data is compromised?
In this Q&A, Joel Dubin discusses what precautions to take if corporate biometric data is stolen. Ask the Expert
-
How to choose the right biometric security product
Identity management and access control expert Joel Dubin discusses the different types of biometric security products on the market today, and offers advice on how you can choose the right biometric product for your organization. Ask the Expert
-
Using fingerprint door locks in a network environment
Identity management and access control expert Joel Dubin discusses fingerprint door lock technology, and unveils whether or not they can be controlled through a network. Ask the Expert
-
Where did the biometric device come from?
In this expert Q&A, security expert Joel Dubin discusses the history of the biometric device, more specifically the fingerprint reader and scanner. Ask the Expert
-
Can tokenization of credit card numbers satisfy PCI requirements?
In this expert response, Joel Dubin discusses whether or not tokenization can meet PCI DSS standards for storing credit card data. Ask the Expert
-
How can the combination of biometrics and electrophysiological signals be used for authentication?
Identity management and access control expert Joel Dubin explains the relationship of biometrics and electrophysiological signals, and examines how these two factors create an adequate authentication method. Ask the Expert
-
Is there a way to bridge physical and logical security without using smart cards or biometrics?
Identity management and access control expert Joel Dubin explains how a corporation can merge physical and logical security without using expensive measures, such as smart cards and biometrics. Ask the Expert
-
What are the pros and cons of using keystroke dynamic-based authentication systems?
In this SearchSecurity.com Q&A, security pro Joel Dubin discusses the positive and negative aspects of using keystroke dynamic-based authentication systems. Ask the Expert
- See More: Expert Advice on Biometrics, Smart Cards, Tokens
-
NO2ID (NO to a national ID)
NO2ID is a grass-roots campaign in the UK that developed in opposition to the government's proposed National Identity Scheme. In the proposed scheme, national identification cards would be issued to individuals over the age of 16. (Continued) Word
-
UK Identity Cards Act
The UK Identity Cards Act is a framework of enabling legislation for a British National Identity card passed in 2006. The Act has not yet gone into full-scale development or deployment... (Continued) Word
-
Chip and PIN
Chip and PIN is a UK government-backed initiative to implement the EMV (short for Europay, Mastercard and Visa) standard for smart payment cards... (Continued) Word
-
IT in Europe, Security Edition: Password security standards and trends
Passwords have long been a security problem. This IT in Europe: Security Edition looks at password trends and alternative forms of authentication. Learning Guide
-
Alternatives to passwords: Replacing the ubiquitous authenticator
As the relative security of passwords falters, are they destined for obscurity? Feature
-
RFID projects: Implementation considerations, RFID security concerns
RFID projects can aid organisations in many ways, including improving physical security. Learn more in this tip from Michael Cobb. Tip
-
Network password security: Following password policy best practices
Regularly updating network password policies to keep pace with threats is essential to enterprise security. Learn about password policy best practices in this tip. Tip
-
NHS smart card devices enable secure access to health care apps
Thanks to the NHS smart card programme and some creative middleware, four health trusts in North London have found an inexpensive way to offer secure access to health care applications. Article
-
SMS two-factor authentication for electronic identity verification
Tokens are no longer the only choice when it comes to OTPs and electronic identity verification. Learn about new two-factor authentication options involving SMS and mobile phones. Tip
-
Two-factor authentication helps charity comply with PCI DSS
Two-factor authentication is a must for any company that needs to comply with the Payment Card Industry Data Security Standard. Find out how one company implemented token-based authentication and how it overcame any rollout issues. Article
-
Single sign-on (SSO) authentication can help prevent password fatigue
Michael Cobb reviews first steps for establishing a federated environment where users sign into a system once and are able to access multiple services controlled by third parties. Tip
-
Gridsure finds global deal for its pattern-based authentication
Following a licensing agreement with CryptoCard Inc., Cambridge-based GrIDsure Ltd. has received a major boost for its pattern-based authentication. Article
-
Single sign-on software removes chaos and aids password management at East Kent NHS Trust
Until a recent single sign-on implementation, 8,000 members of staff at East Kent Hospitals University Foundation NHS Trust were drowning in a sea of different passwords that they needed to access various parts of the network. Article
- See More: All on Biometrics, Smart Cards, Tokens
About Biometrics, Smart Cards, Tokens
Improve your organizations authentication system with biometric security, smart card technology and security tokens. Browse these articles and tips to get advice.