Each year, Gartner releases a Cool Vendors in Identity and Access Management (IAM) list to highlight vendors whose "offerings and business models point to new directions in the market" in an effort to help CISOs and IAM decision-makers consider new technologies and solutions in the IAM market. For 2015, Gartner has honored five IAM vendors, and I'm proud to announce that LaunchKey was among them.
In the report, Gartner Principal Research Analyst, Anmol Singh, writes:
"LaunchKey offers a decentralized mobile authentication platform for multi-factor authentication, real-time authorization and physical access control. It extends its authentication capabilities to IoT devices through a smartphone acting as an authentication gateway to securely communicate with devices. The innovative approach to authentication offered by LaunchKey demonstrates that this company is disruptive to traditional authentication approaches and an effective alternative to other out-of-band (OOB) authentication methods."
The report also notes that the Internet of Things (IoT) is changing the IAM market and forcing CISOs and IAM decision-makers to consider authentication alternatives that are compatible with a technological landscape that's often inherently incompatible with many classic authentication standards like passwords and biometrics. Fortunately, LaunchKey's fully-decentralized architecture shifts the layer of authentication and authorization out of band and onto mobile devices. This means any "thing" with an internet or wireless connection to a mobile device can utilize multi-factor authentication through LaunchKey's decentralized auth platform.
"IAM leaders need to find authentication methods that can be integrated with things as well as endpoint devices, business applications, and so on," says Gartner.
You can read more about the 2015 Cool Vendors in IAM report here.
At LaunchKey, we’re always looking at innovative new ways to extend our next generation authentication technology so we were excited when we got our hands on the new Apple Watch. Even more so than a mobile phone, an interface that’s directly attached to your person like a smart watch makes for an ideal authenticator which is why our mobile development team was eager to put together a LaunchKey-Apple Watch integration.
Others in the authentication space have merely demonstrated the ability to extend legacy 2-step authentication (OTP) to the smart watch which means their capability is limited to logging in with tokens. However with LaunchKey, not only can any internet-connected application push a login request through to the Apple Watch for passwordless login, the user can also remotely log out of that same application.
Additionally, the user or the requesting application can take advantage of LaunchKey’s multiple other authentication factors like geofencing which restricts auth requests to one or more geo-locations. The application itself can also enforce security policies through the LaunchKey API like restricting authorizations to specific time frames, users, locations, etc. None of this is possible with traditional 2-step authentication and OTP, but not only is ...
In May, we added support for biometric fingerprint authentication to LaunchKey Mobile on supported devices. Today, we're excited to announce the release of another new biometric authentication factor: facial scan.
With this new inherence factor of authentication, you can authenticate with the biometric signature of your unique face. Instead of swiping the LaunchKey slider upwards to authorize an authentication request through LaunchKey Mobile, you'll utilize the front-facing camera on your mobile device to scan and authenticate your face.
Now that we've added facial recognition to LaunchKey Mobile, you'll automatically be able to extend this powerful authentication to any LaunchKey-supported system. With LaunchKey's WordPress plugin for example, LaunchKey becomes the first plugin to bring biometric facial recognition to WordPress. Check out our docs section to see what other systems LaunchKey integrates with or utilize our REST API to make your own integration.
Facial Scan is currently available on all supported iOS and Android mobile devices. To setup Facial Scan, enable it within your control panel inside LaunchKey Mobile. And don't worry about the sensitive nature of your biometric data -- as with all authentication data used by LaunchKey, your biometric data is encrypted and stored locally ...
Did you know most modern computing devices like PCs, smartphones, and tablets come with special cryptoprocessors or "crypto chips" made specifically for the secure operation and storage of cryptographic data? This special hardware provides more security for cryptographic functionality by segregating the cryptographic operations and data from the standard operating environment.
Unfortunately, many developers and organizations are either unaware of this trusted execution technology or they lack the technical means to integrate with it. Fortunately, our friends at Rivetz are developing the infrastructure and tools to make leveraging these crypto chips easier and more accessible.
Today, Rivetz Corp. has announced a partnership with LaunchKey to provide a combined solution that offers a simple and secure way to utilize hardware protected multi-factor authentication with online services and applications. We're very excited to be working with Rivetz and we look forward to offering our combined solution in the near future. Stay tuned!
Read the full release here.
In June, we quietly released a couple of administrative security features that give developers and organizations more control over how their end users interact with their LaunchKey-secured applications. We've made these premium features publicly available to all developers while we test them in the wild, and we'd love your feedback.
FORCE AUTHENTICATION FACTORS
One of our objectives at LaunchKey is to put more power in the hands of end users to protect themselves with additional security by optionally enabling multiple factors of authentication on their mobile device. If an end user deems it necessary, they can enable any of the knowledge, possession, or inherence factors of authentication available within LaunchKey Mobile such as geofencing, the combo lock, Bluetooth device factor, and others.
However, sometimes an organization or application has such stringent security needs that they must ensure their end users (e.g. employees or customers) utilize a minimum level of security. For these use cases, we now provide the ability to force the use of specific authentication factors, type of factors, or amount of factors, from the API side.
To utilize this premium feature, log in to Dashboard, select the developer application you would like to enable this ...