SYS-CON MEDIA Authors: Elizabeth White, Pat Romanski, Esmeralda Swartz, Kevin Jackson, Glenn Rossman

News Feed Item

PortalGuard's Five Layer Authentication Offers Quintessential Solutions for the Worsening Webmail Vulnerability Crisis

AMHERST, NH -- (Marketwire) -- 01/31/13 -- The PortalGuard platform's layered authentication approach adds protection which is crucial in defending Outlook Web App (OWA) against attacks, an often overlooked and critically weak focal point for illegitimate access to most any corporate network, with minimal tradeoff between security and usability.

Through providing a variety of two-factor authentication methods for logins, the PortalGuard platform effectively alleviates the threat of compromised webmail credentials, greatly enhancing and securing OWA's native simple password authentication. In addition, the platform presents options for enhancing the authentication for self-service password reset, eliminating the compromise between allowing user self-service and softening security.

"It is very clear that in an unprecedented number of accounts involving the compromise of corporate infrastructure in recent years, access to employee email accounts were a primary factor," says Thomas Hoey, founder and CEO of PortalGuard, a company whose principals have always centered on providing companies with low-risk, robust functionality, and dedicated customer service, all while maintaining usability at an affordable price point. "Webmail access is sought after by hackers for an overwhelming number of reasons. An email account contains a wealth of data that can be easily leveraged for further takeover of the individuals or company's assets or services," Hoey says. "Everything from password reset links, sensitive corporate information, and all of your personal data is there as well, to be waded through for answers to password recovery questions. It's in essence an archive with everywhere you've been and everything you've done online, making it the perfect place to initiate any sort of attack. Most OWA logins are publicly available and typically secured with the simplest lock available: a basic password."

To hearken to the theme of usability, PortalGuard also offers completely transparent One-time Password (OTP) delivery methods to achieve its two-factor authentication in addition to the traditional, tangible type. Through use of its Transparent Tokenless Toolbar (TTT) browser plugin, the enhanced protection of two-factor authentication is combined with utmost usability, when a user is able to submit a full-fledged two-factor authentication without the need of a phone, hard-token, or anything the user has besides their laptop. The TTT automatically generates time based OTPs (TOTPs) on a regular interval, as well as encrypts the OTP value with public key cryptography. This ensures that the OTP is only able to be decrypted and read by the PortalGuard server, as well as severely limits the amount of time the OTP is valid if it were to be somehow compromised. With the TTT plugin installed, authenticating on a machine that passes a set of risk-based criteria requires just the users' password, nothing more than a standard OWA login, despite that a secure two-factor authentication is actually taking place.

"For many, the importance of locking down your webmail access appears to be overlooked," Hoey continues, "Others are certainly actively securing their OWA logins, through SSL, or hiding them behind reverse proxies, which are all partial answers. The fact of the matter is: multi-factor authentication is the only solution that addresses the issue of it being a weakest link in its entirety."

The full version of the PortalGuard authentication platform software is available for $7,500 USD per installation, and comes with a 90 day money back guarantee. A trial version of PortalGuard is also available. For details, please visit the company website (www.portalguard.com).

Add to Digg Bookmark with del.icio.us Add to Newsvine

Kimberly Johnson
Email Contact
PO Box 1226
Amherst NH, 03031
603.547.1200

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.

Latest Stories
“This win means a great deal to us because it is decided by the readers – the people who understand how use of our technology enables new insights that drive the business,” said Matt Davies, senior director, EMEA marketing, Splunk. “Splunk Enterprise enables organizations to improve service levels, reduce operations costs, mitigate security risks, enhance DevOps collaboration, create new product and service offerings and obtain deeper insight into customer behavior. Being named Best Business App...
IBM has announced a new strategic technology services agreement with Anthem, Inc., a health benefits company in the U.S. IBM has been selected to provide operational services for Anthem's mainframe and data center server and storage infrastructure for the next five years. Among the benefits of the relationship, Anthem has the ability to leverage IBM Cloud solutions that will help increase the ease, availability and speed of adding infrastructure to support new business requirements.
Vormetric on Wednesday announced the results of its 2015 Insider Threat Report (ITR), conducted online on their behalf by Harris Poll and in conjunction with analyst firm Ovum in fall 2014 among 818 IT decision makers in various countries, including 408 in the United States. The report details striking findings around how U.S. and international enterprises perceive security threats, the types of employees considered most dangerous, environments at the greatest risk for data loss and the steps or...
Companies today struggle to manage the types and volume of data their customers and employees generate and use every day. With billions of requests daily, operational consistency can be elusive. In his session at Big Data Expo, Dave McCrory, CTO at Basho Technologies, will explore how a distributed systems solution, such as NoSQL, can give organizations the consistency and availability necessary to succeed with on-demand data, offering high availability at massive scale.
Code Halos - aka "digital fingerprints" - are the key organizing principle to understand a) how dumb things become smart and b) how to monetize this dynamic. In his session at @ThingsExpo, Robert Brown, AVP, Center for the Future of Work at Cognizant Technology Solutions, outlined research, analysis and recommendations from his recently published book on this phenomena on the way leading edge organizations like GE and Disney are unlocking the Internet of Things opportunity and what steps your o...
The move in recent years to cloud computing services and architectures has added significant pace to the application development and deployment environment. When enterprise IT can spin up large computing instances in just minutes, developers can also design and deploy in small time frames that were unimaginable a few years ago. The consequent move toward lean, agile, and fast development leads to the need for the development and operations sides to work very closely together. Thus, DevOps become...
In their session at @ThingsExpo, Shyam Varan Nath, Principal Architect at GE, and Ibrahim Gokcen, who leads GE's advanced IoT analytics, focused on the Internet of Things / Industrial Internet and how to make it operational for business end-users. Learn about the challenges posed by machine and sensor data and how to marry it with enterprise data. They also discussed the tips and tricks to provide the Industrial Internet as an end-user consumable service using Big Data Analytics and Industrial C...
SYS-CON Media announced that Splunk, a provider of the leading software platform for real-time Operational Intelligence, has launched an ad campaign on Big Data Journal. Splunk software and cloud services enable organizations to search, monitor, analyze and visualize machine-generated big data coming from websites, applications, servers, networks, sensors and mobile devices. The ads focus on delivering ROI - how improved uptime delivered $6M in annual ROI, improving customer operations by minin...
“DevOps is really about the business. The business is under pressure today, competitively in the marketplace to respond to the expectations of the customer. The business is driving IT and the problem is that IT isn't responding fast enough," explained Mark Levy, Senior Product Marketing Manager at Serena Software, in this SYS-CON.tv interview at DevOps Summit, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
"SOASTA built the concept of cloud testing in 2008. It's grown from rather meager beginnings to where now we are provisioning hundreds of thousands of servers on a daily basis on behalf of customers around the world to test their applications," explained Tom Lounibos, CEO of SOASTA, in this SYS-CON.tv interview at DevOps Summit, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
SYS-CON Events announced today that ActiveState, the leading independent Cloud Foundry and Docker-based PaaS provider, has been named “Silver Sponsor” of SYS-CON's DevOps Summit New York, which will take place June 9-11, 2015, at the Javits Center in New York City, NY. ActiveState believes that enterprises gain a competitive advantage when they are able to quickly create, deploy and efficiently manage software solutions that immediately create business value, but they face many challenges that ...
The Industrial Internet revolution is now underway, enabled by connected machines and billions of devices that communicate and collaborate. The massive amounts of Big Data requiring real-time analysis is flooding legacy IT systems and giving way to cloud environments that can handle the unpredictable workloads. Yet many barriers remain until we can fully realize the opportunities and benefits from the convergence of machines and devices with Big Data and the cloud, including interoperability, ...
SYS-CON Media announced that Cisco, a worldwide leader in IT that helps companies seize the opportunities of tomorrow, has launched a new ad campaign in Cloud Computing Journal. The ad campaign, a webcast titled 'Is Your Data Center Ready for the Application Economy?', focuses on the latest data center networking technologies, including SDN or ACI, and how customers are using SDN and ACI in their organizations to achieve business agility. The Cisco webcast is available on-demand.
Datapipe has acquired GoGrid, a provider of multi-cloud solutions for Big Data deployments. GoGrid’s proprietary orchestration and automation technologies provide 1-Button deployment for Big Data solutions that speed creation and results of new cloud projects. “GoGrid has made it easy for companies to stand up Big Data solutions quickly,” said Robb Allen, CEO, Datapipe. “Datapipe customers will achieve significant value from the speed at which we can now create new Big Data projects in the clou...
IoT is still a vague buzzword for many people. In his session at @ThingsExpo, Mike Kavis, Vice President & Principal Cloud Architect at Cloud Technology Partners, discussed the business value of IoT that goes far beyond the general public's perception that IoT is all about wearables and home consumer services. He also discussed how IoT is perceived by investors and how venture capitalist access this space. Other topics discussed were barriers to success, what is new, what is old, and what th...