In response to the growing concern about the safety of information being passed online, security solutions vendor RSA Security has created a user authentication suite of products designed to provide PKI levels of protection at a fraction of the cost.
RSA Security business development manager David Jones explained that the products represent a complete security package which would provide RSA's VAR partners with the opportunity to value add to their Web development offerings.
"At the moment, businesses are looking to Web enable their interactions with customers and other businesses, but their major concern is security. PKI solutions are very secure but they are too complex for many VARs to implement," Jones said.
According to Jones, the suite of products achieves PKI through RSA SecurID's two-factor user authentication technology. This provides for password and token authentication in order for highly secure transactions to be carried out with minimal desktop presence.
"Impact on the desktop is minimal because the suite operates via the host Web site," Jones said. "All the end user needs is browser software, so the solution is ideal for consumer- or client-type environments."
The product suite, called the RSA SecurID Web Portfolio, is designed to provide e-security elements needed by corporate portals, e-marketplaces, ASP-hosted applications and other Web-based business-to-business and business-to-consumer applications to get to market quickly with secure Web sites.
The RSA SecurID Web Portfolio includes any combination of RSA SecurID authenticators (hardware tokens, key fobs, software tokens or smart cards), RSA ACE/Server software, RSA ACE/Agent software for protecting specific platforms and applications and the recently announced RSA SecurID select co-branding service.
According to RSA, the authentication management component of RSA Security's SecurID Web Portfolio controls both the verification of authentication requests and the administration of security policy.
Although the suite is not designed for specific verticals, Jones commented that the offering is expected to do well in the financial sector, and facilitate the sell through of e-commerce and information Web-based services.
"It is high-grade security that is easy to implement. Essentially it should sell through any market where sensitive information is available over the Internet because it is an easy way to limit access to information to only a certain number of people," Jones said.
While the offering is clearly ideally suited to the financial sector, Jones also specifically mentioned medical and education verticals as areas where the software suite may have particular potential.