Feeds

SanDisk to secure online sales with USB Flash drives

Crypto on your keychain

Internet Security Threat Report 2014

SanDisk will next year bring secure computing to its USB Flash drives in a bid to persuade online banks, auction houses and retailers to use them to minimise unauthorised and fraudulent transactions.

The technology is called TrustedSignins and essentially embeds a "high performance" encryption engine into the Flash drive. SanDisk's pitch to financial and retail institutions is that they will be able to provide customers with drives containing log-in software and highly-secure keys that provides a level of protection above and beyond the user's own password and log-in name.

The first time the user logs on, the website checks for the presence of a TrustedSignins device. If it finds one, it generates a one-time password (OTP) which is stored on the device's secure storage partition in an encrypted form. Later, access is granted only if the user's log-in details are verified and the OTP is too.

SanDisk said the technology would be made available to banks and the like in 2007, for their evaluation. It also said it was working with security companies RSA and Verisign to allow the technology to be supported by websites that already those firms' authentication services, giving anyone who buys and uses a TrustedSignin device added peace of mind. ®

Beginner's guide to SSL certificates

Whitepapers

Designing and building an open ITOA architecture
Learn about a new IT data taxonomy defined by the four data sources of IT visibility: wire, machine, agent, and synthetic data sets.
5 critical considerations for enterprise cloud backup
Key considerations when evaluating cloud backup solutions to ensure adequate protection security and availability of enterprise data.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Protecting against web application threats using SSL
SSL encryption can protect server‐to‐server communications, client devices, cloud resources, and other endpoints in order to help prevent the risk of data loss and losing customer trust.