A new security tool from StrikeForce Technologies is designed to block the growing use of keylogging spyware that steals consumers’ passwords and other personal data entered onto retail web sites.
A new security tool from StrikeForce Technologies is designed to block the growing use of keylogging spyware that steals consumers’ passwords and other personal data entered onto retail and financial services web sites.
StrikeForce has released GuardedID, which uses Secure Sockets Layer encryption technology at the keyboard level to prevent spyware from keylogging or recording information like passwords as consumers key them into retail web sites, the company says. Keylogging spyware is typically downloaded unknowingly by consumers through the Internet, including through e-mail attachments.
“Banks and e-commerce sites have the most to lose from keylogging, and the most to gain by stopping it,” said George Waller, co-founder of StrikeForce Technologies. “Keyloggers are hackers’ favorite weapon, and for good reason – they’re hard to break.”
Avivah Litan, an analyst at Gartner Inc. who specializes in security technology, said the StrikeForce tool is among a new breed of security tools but is too new to have a proven record. “This is an interesting development and technology, but it remains untested so until it is tested, it’s hard to know how robust, thorough, and effective it will be,” she says.
StrikeForce also recently launched ProtectID, a two-factor authentication platform that lets web sites use up to 10 authentication models to assure the identity of online customers. For example, the platform can support a system under which online customers will enter their log-in name and password on a web site, but then also receive a call to their cell phone and be required to enter a PIN on the phone’s keypad to complete the authorization.
ProtectID can also work with biomectric devices, including iris and fingerprint scanners, smart cards and one-time password generators, StrikeForce says.