One of the major Internet Data Centers, SmileServe, now provides AutoPassword and Access manager to their customers. One of the main reasons why they chose AutoPassword was because it can prevent phishing attacks against servers in IDC.Whenever server attacks and data breaches happen, IDC are sued by their customers because the company lost their data. Customer companies tended to try to hand over the responsibility of that accident to IDC. Customer company want to make it as the vulnerability of IDC service.
User authentication technologies including 2FA/MFA have been known to be more secure than a traditional user password, however these technologies are still highly vulnerable to fake online services and have suffered breaths in previous years. Recent user authentication technologies only check the user’s authentication, e.g., their password, so, if a user connects to a fake online service first, they’d be giving their credentials to a fake online service and then authenticating access by an SMS code, OTP code, approval of mobile push notification, finger print or IRIS scan without knowing. Therefore, it’s extremely difficult to be 100% sure where/who we are connecting to, as we presume we are connecting to a genuine online service.
Here’s why KIAT, a public organization for advancement of technology in South Korea, chose AutoPassword for its internal online systems. Before adopting AutoPassword Enterprise, KIAT had used many other conventional 2FA services, however, they found that most services proved to be insecure or inconvenient for them, particularly SMS codes and OTP dongles, as their users needed to type the authentication codes in manually. Not only that, but each online system also has their own authentication methods and processes and employees sometimes have to use several different authentication methods to access different online services. So, to combat these problems of usability, security and convenience, KIAT decided to integrate AutoPassword Enterprise as their main user authentication method, to enhance their internal security whilst making it far easier for their users to use.
AutoPassword solves the phishing and pharming attack problem for all online services and eliminates the vulnerability of 2FA/MFA and password managers based on one-way authentication. The most common way users credentials are stolen is through phishing and pharming attacks. AutoPassword is presented by the online service to the user first. Therefore, there’s no chance for a hacker to steal the user's credentials on the user's terminal. Also, there's no possibility of falling victim to a pharming attack because the user can verify the authenticity of the online service first, with their mobile device.
DualAuth Team presented AutoPassword and Openpayment at Finovate 2018 New York. The demonstration, presented by Director Heejun and Jerri, showcased how AutoPassword and OpenPayment. In the demo they showed how mutual authentication technology could change a user password, online transaction, payment, wire and etc. It showed the future of mutual authentication not only for online but also for offline.
After inventing the concept adding the service authentication on top of the user authentication 2015, the inventor, John Woo, presented the mutual authenticator as ‘Dual Check’ and ‘Service Password’ in Finovate New York and Hong Kong 2016. In this original concept and demo, he showed how mutual authentication can change not only the user authentication on online service but also the user authentication at offline ATM and PCs. You can see how this original concept went beyond AutoPassword today.
Autopassword now added the capabilities to allow Linux and Windows users to also benefit from using AutoPassword, not just online services. Let's see how AutoPassword automatically changes the password of Windows and Linux.If AutoPassword access manager is installed on your Windows or Linux operating system, you can then be assured that you can be free from not only the user password burden but also phishing attacks.