multi-factor authentication
  What We Do
  Demonstration
  Request Info



TriCipher Press Releases

Security & Compliance Experts Validate TriCipher's myOneLogin Service

Neohapsis validates security, performance of secure single sign-on service

LOS GATOS, Calif. (July 23, 2009) — TriCipher, a leading provider of strong authentication solutions to protect against fraud and identity theft, today announced that its myOneLogin service has been validated by Neohapsis, experts in governance, risk and compliance. Neohapsis conducted a detailed evaluation of the Web single sign-on service, validating overall security practices as well as performance and administrative usability.

Compliance frameworks like PCI-DSS and FFIEC require companies to demonstrate reasonable security measures for access to regulated or material data. myOneLogin Secure Single Sign-On helps companies meet these requirements by strengthening, managing and auditing access to Web-based applications. This on-demand Web SSO solution combines multi-factor authentication and standards-based identity federation, and offers significant protection from phishing and account theft or misuse. It also helps businesses manage and track their use of Web applications, including SaaS business applications like Salesforce and Google Apps.

The independent Neohapsis testing confirmed the following claims:

  • Phishing protection: myOneLogin uses best practices for phishing protection and confirmed resilience to Cross Site Request Forgery attacks.
  • Quick deprovisioning: Administrators can deprovision users in four steps/clicks – removing application access quickly and easily when someone leaves.
  • Fast user upload: Administrators can upload on average 2.4 users per second, in testing of uploads of up 1000 users.
  • Quick authentication: myOneLogin authenticated users with Web applications in less than a second in the Neohapsis test environment.
  • Federation in minutes: Neohapsis was able to reconfigure existing Web applications to support SAML-based authentication using the myOneLogin service in just over 30 minutes.

"Our testing found that the myOneLogin service met or exceeded TriCipher's claims for performance and usability," said Greg Shipley, CTO at Neohapsis. "In particular, thorough testing of the authentication, password reset, and registration processes confirmed that TriCipher is deploying best practices to defend users from phishing attacks."

"We turned to Neohapsis because of its depth of security and compliance expertise," said Kyle Austin, VP Engineering at TriCipher. "Our customers want to know that they can trust in TriCipher's technologies and expertise as part of their overall security and compliance objectives; this independent validation helps confirm that trust."


###


About TriCipher
TriCipher, Inc. provides Internet identity services to protect web and enterprise portals, the people that use them and the business processes that flow through them against fraud and identity theft. TriCipher myOneLogin™ is the first secure, on-demand offering that delivers strong authentication, single sign-on (SSO) and federation capabilities for web applications in a single solution. The TriCipher Armored Credential System™ (TACS) is a unified authentication system that enables companies to deploy and manage multiple types of credentials from a single infrastructure. Through this flexible "Authentication Ladder," TriCipher protects customer investment by adjusting authentication strength to defeat new threats and to meet regulatory changes without the need to implement a new infrastructure. Founded in 2000, TriCipher is headquartered in Los Gatos, Calif. The company is funded by ArrowPath Venture Capital, EPIC Ventures, Intel Capital, RBC Technology Ventures, and Trident Capital. For more information, visit www.myOneLogin.com.

About Neohapsis
Neohapsis provides governance, risk, and compliance (GRC) products and services to address the risk management, regulatory, and information protection needs of global enterprises and government agencies. Through its advanced GRC products and proven consulting services, Neohapsis delivers trusted infrastructures and fully integrated GRC products. Neohapsis solutions provide unprecedented visibility into the complex interrelationships between business objectives, people, information, risks, controls, and the state of compliance. Neohapsis leverages the power of the security and GRC relationship to enable sustainable governance frameworks that improve operational integrity and business performance. Additional information about Neohapsis can be found on the Web at www.neohapsis.com.


Media Contacts for TriCipher:
Dan Brennan
Corporate Ink
617.969.9192
dbrennan@corporateink.com

Solutions | Products | Threats | Customers | News | Partners | Support | About | Site Map
Copyright © 2009, TriCipher, Inc.
TriCipher, Armored Credential, and Armored Credential System are either registered trademarks or trademarks of TriCipher, Inc. in the United States and/or other countries. All other trademarks are the property of their respective owners. FIPS 140-2 Validation is a Certification Mark of NIST, which does not imply product endorsement by NIST, the U.S. or Canadian Governments. Identrust, Identrust Compliant, and the Identrust Compliant logo are trademarks and service marks of Identrus LLC.