New Admin Features - Force Auth Factors, Security Fencing

Jul 17, 2014 By Geoff

In June, we quietly released a couple of administrative security features that give developers and organizations more control over how their end users interact with their LaunchKey-secured applications. We've made these premium features publicly available to all developers while we test them in the wild, and we'd love your feedback.

FORCE AUTHENTICATION FACTORS

One of our objectives at LaunchKey is to put more power in the hands of end users to protect themselves with additional security by optionally enabling multiple factors of authentication on their mobile device. If an end user deems it necessary, they can enable any of the knowledge, possession, or inherence factors of authentication available within LaunchKey Mobile such as geofencing, the combo lock, Bluetooth device factor, and others.

However, sometimes an organization or application has such stringent security needs that they must ensure their end users (e.g. employees or customers) utilize a minimum level of security. For these use cases, we now provide the ability to force the use of specific authentication factors, type of factors, or amount of factors, from the API side.

To utilize this premium feature, log in to Dashboard, select the developer application you would like to enable this on, and click on the Security tab.

SECURITY FENCING

A security fence allows a developer or administrator to set constraints or rules (the "fence") that an end user must comply with in order to authenticate. With this update, multiple fences can be applied to an application on an app by app basis.

With a geo-fence, an application can limit its end users to within a specified distance from a given geographical point. A real-world example may be an organization restricting access to internal employee systems by placing a geo-fence around their corporate headquarters or an application developer using geofencing around her home.

A time-fence works like a geo-fence, but instead of constraining end users to a specific geographic area, end users are constrained to a specific period of time (or multiple periods of time).

To utilize this premium feature, log in to Dashboard, select the developer application you would like to enable this on, and click on the Security tab.

Home