RSA security announces plans for one-time password technology

RSA Security has announced plans to encourage the development of technical standards to speed up the introduction of secure...

RSA Security has announced plans to encourage the development of technical standards to speed up the introduction of secure "one-time" password technologies for use within corporate networks.

At its annual conference, the security supplier released five technical specifications for public consultation, with the aim of passing them to international standards bodies to form the basis of international standards. A sixth specification will follow.

One-time, or single-use passwords, are more secure than standard passwords because the hacker cannot re-use the user’s password. Although widely used in industries such as government which require high-level security a lack of technical standards has limited the use of one-time passwords.

RSA’s proposals for password standards has won backing from technology suppliers including Check Point, Cisco, Juniper Networks, Adobe and Microsoft.

"Standardisation on common integration methods enables both application and authentication suppliers to gain maximum use which ultimately benefits businesses worldwide as they adopt strong authentication throughout enterprises and online commerce," said Victor Chang, RSA vice-president of security.

The company confirmed that it had no intention of taking patents on the technology in a move designed to make it easier for businesses to replace passwords with strong authentication technology, such as smart tokens.

"RSA Security's proposed open specifications for one time passwords will serve the IT security industry by enabling technology solution vendors to integrate one-time password technology throughout the enterprise, said Paul Weinstein, vice-president of business at Check Point.

Read more on Hackers and cybercrime prevention

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close