Celo two-factor-authentication solution secures online information and controls access to internet applications 
(04/11/2008)
As public and private sector organisations open up their networks to facilitate information exchanges across a wider range of stakeholders, they are exposed to an increasing number of sophisticated e-crimes, such as financial fraud and identity theft. As a result, a static username and password is no longer an adequate identifier to verify a user and, at the same time, fails to reassure users that they are communicating with an authentic website.
Commerce Media has officially launched its two-factor-authentication (2FA) solution, Celo, which is suitable for any organisation wanting to secure online information or control access to internet applications. The software is one of the most cost effective 2FA products currently available as it can seamlessly integrate into existing IT infrastructures and, unlike many alternative offerings, no additional user hardware is required.
Celo has been created to address such growing online threats, and meet the demand for more robust online security measures which are simple to implement and convenient to use.
Celo is a strong and user friendly 2FA solution. During the standard login process to an internet application, such as a website or intranet, the user is automatically sent a one-time-password (OTP) to their mobile phone, PDA, email account, or even via instant message. When prompted by the web application, the OTP is entered by the user. The password is specific to that user and only valid for a set period after which it expires. With the combination of a static user name / password, and issue of a real-time OTP via an independent medium such as a mobile phone, both parties can verify their identity and be confident that the communication has not been corrupted.
Michael Robertson, Managing Director of Commerce Media and creator of Celo, comments: “Celo is based on simplicity and scalability. A tool kit is provided to configure the system quickly, and once established can instantly be used to authenticate 1 or more than 100,000 users. The client decides the length and complexity of the password and its validation period, for example a few minutes, hours or days. Dispatching OTPs via text messaging or e-mail offers many key benefits including a reduced cost of implementation as no special devices need to be distributed to users, user familiarity with the technology, and, with the public’s general reliance on their mobile phones, the continual availability of this interface.”
Although there is an obvious need for a high level of security when it comes to financial transactions, such as online banking and trading, Michael highlights that 2FA has become increasingly common across many sectors. He adds: “The move towards e-government, for example, aims to encourage UK citizens to communicate with various government departments online. With some recent high profile incidents where sensitive data has been lost by public sector departments or personnel, and the inevitability that increasingly confidential details will be shared online, identity theft has become a hot topic. Within government departments, local authorities and the private sector alike, implementing effective yet easy to use security for web applications and being seen to be doing so has never been more important.”
Following an initial pilot of the technology, the Ministry of Defence (MoD) has become the first user of Celo. Its Disposal Services Authority (DSA) - which sells surplus stock ranging from socks to military vehicles - has implemented the solution to verify pre-authorised contractors before they can access the site to list products for sale.
Michael concludes: “As an information security provider, endorsement of our 2FA solution by the MoD is about as good as it gets. At Commerce Media we have always adhered to the strictest ISO security standards and the success of Celo to secure the DSA’s website is a fantastic testimony to our information security credentials.”
Related topics: Application and software security Authentication and identity management Computer and PC Security Data management and data security Hacking and intrusion prevention Internet and Web security Mobile and Wireless Security Security threats and vulnerabilities
Print version | 
Email to a friend | 
Related articles
Data breaches: Trends, costs and best practices gives you all the latest information on securing personal and corporate data, key recommendations for immediate action to improve data security, and how to respond to data breaches.
Other Security news and resources
Security News
Suppliers Directory
Jobs forum
Classifieds
Knowledge base
White papers
Research library
Security books
Special reports
Security interviews
Security companies
Security events
Security links
Security market
Product channels
Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Other Security Products
IT Security white papers and research library
Access Control Authentication Data Management Data Security Digital Signatures Email Security Identity Management Internet Security Intrusion Prevention Network Security Remote access security Security Management Security Policies Security Software Security Threats Virus Detection Software Virus Protection VPN Vulnerability Assessment Wireless Security
Security books, guides, standards and toolkits
RFID and Smart Cards books, guides and reference documents Biometric books, guides and reference documents CCTV books, guides and reference documents Intruder alarms and intrusion detection systems books, guides and reference documents Monitoring and surveillance books, guides and reference documents IT Governance, ISO 27001 ISO 17799 and BS 7799 toolkits Fire, Health & Safety books, guides and reference documents
