According to a recent New York Times post, computer experts claim to have found an easy way to hack into a certain RSA token that has a USB port and compromise the seed-file. Essentially, tokens physical or software based, all hold a seed file that tells what code to show in which token at what time. These are all commonly known as pre-issued token systems. Without arguing or validating the news, the latest story posted in the New York Times blog, illustrates the challenges this widely used approach has when it comes to the modern threats of today. The best solution is to focus on real-time session specific solutions that do not contain seed files or pre-issued codes. Be it delivered via SMS or software or hardware tokens. The SMS PASSCODE solution is one such solution where the user ID and password is validated before a code is generated in real-time and delivered via SMS, voice or secure email to the users mobile device. No seed-file, no pre-issued codes. The solution is highly awarded due to this simple, yet profound difference. To learn more about the New York Times post, click here.
You may be interested in attending our latest Webinar: Modern Threats, Modern Solutions – New Generation 2 Factor Authentication. Register here.