RSA looks to one-time password standards plan to beat fraudsters

RSA Security has announced plans to encourage the development of technical standards to speed up the introduction of secure...

RSA Security has announced plans to encourage the development of technical standards to speed up the introduction of secure "one-time" passwords.

At its annual conference in San Francisco last week the security supplier released five technical specifications for public consultation, with the aim of passing them to international standards bodies. A sixth specification will follow.

One-time or single-use passwords are more secure than standard passwords because a hacker cannot re-use the password if it is discovered. Although widely used in government and industries that require high-level security, a lack of technical standards has limited the wider use of one-time passwords.

RSA's proposals for password standards has won backing from technology suppliers including Check Point, Cisco, Juniper Networks, Adobe and Microsoft.

"Standardisation on common integration methods enables both application and authentication suppliers to gain maximum use, which ultimately benefits businesses worldwide as they adopt strong authentication throughout enterprises and online commerce," said Victor Chang, RSA vice-president of technology.

The company confirmed it had no intention of taking patents on the technology, which would make it easier for businesses to replace passwords with strong authentication technology, such as smart tokens.

"RSA Security's proposed open specifications for one-time passwords will serve the IT security industry by enabling technology solution suppliers to integrate one-time password technology throughout the enterprise, said Paul Weinstein, vice-president of business at Check Point.

Read more on IT risk management

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close