WATCH: Biometric and Blockchain Security Devices In Action At RSA 2019

This is a repost from CRN. To read the full article, click here.

At RSA 2019, biometric authentication and blockchain took the spotlight as security insiders debate new ways to improve identity management.

“The biggest opportunity I think in the market is identity,” said Adam Burke, vice president of sales and operations at Quest, a managed services provider based in Roseville, Calif.

Burke’s comments come as organizations face an increasing number of phishing attacks, largely because of weak or default passwords. Research finds that weak passwords were responsible for over 80 percent of phishing attacks, according to a Verizon Data Breach Investigations Report. And to make matters worse, hackers are compiling lists of passwords and selling them on the dark web to be used in account takeovers.

“The market has been approaching security the same way for the last 12 to 15 years,” said Kelly Bissell, senior managing director of security at Accenture.

As a result, biometrics are gaining rapid adoption.

“This becomes the one key that you can use for everything front door, tablets, phones, PCs and business applications on a day-to-day basis,” said Nicholas Buchanan, chief technology officer at Armor Scientific, as he showed off his company’s new digital identity token. The product launched on Monday and those behind it want the channel to play a key role in bringing it to market.

“And ultimately our solution is easy to deploy and there are a lot of services on the backend for partners to tie into the systems to make our solutions work,” said Scott Moore, chief revenue officer at Armor Scientific.

The identity management market is expected to reach 7 billion dollars by 2024. For more coverage, watch CRNtv’s video included in this article.

Armor Scientific Emerges From Stealth With Wearable Authentication Solution

California-based Armor Scientific this week announced that it has emerged from stealth mode with an identity and authentication platform that combines wearable hardware and patent-pending middleware components.

The solution is named Armor Platform and it has been described by the company as a “stringent security system” that can be used in the law enforcement, military, government, finance, healthcare, and first responder sectors.

The Armor Platform’s main component is a digital identity token that uses biometrics, proximity and location for authentication. The token includes fingerprint biometrics and ultra-low-power GPS tracking.

Users can opt for a dedicated “no touch” token, a “touch” token, or they can use an application installed on their smartphone. These are the platform’s Air Armor components, which communicate with the Endpoint Armor components.

The Endpoint Armor is installed on connected devices and it listens for proximity-based communications from Air Armor gadgets and backend communications from Identity Armor. Identity Armor is a cloud or on-premises hub for endpoint connection, authentication and workflow execution.

A behavior analytics component leverages artificial intelligence (AI) and machine learning (ML) to calculate trust and risk scores both before and after access is granted. Proprietary blockchain technology and cryptographic keys are used to add users and devices as a node to an assurance domain.

Armor Scientific has emerged from stealth mode after five years in which it has tested and improved its products based on feedback from over 100 projects in the government, healthcare, banking and logistics sectors.

Use case scenarios described by the company include hands-free, proximity-based access to restricted point-of-care systems in healthcare organizations, automated login and proximity or location-aware access to critical enterprise or government systems, location tracking for first responders and law enforcement, an authorization mechanism for financial transactions, and geographically tying users to devices for identity assurance.

RSA Conference 2019 and MSSP Cybersecurity News: 05 March 2019

Armor Scientific, a cybersecurity company “purpose built to manage the identity of everything,: has emerged from stealth mode. The company’s Armor Platform is a converged hardware token and patent-pending middleware suite. It combines GPS, biometric hardware, and patent-pending cryptographic and blockchain-enabled middleware. The result: Authentication is “as easy as walking into a room,” the company claims. “

This is a repost from MSSP Alert. To read the full article, click here.

Armor Scientific Emerges from Stealth to Manage the Identity of Everything

This is a repost from Journal Of Cyber Policy. To read the full article, click here.

SUMMARY

  • Armor Platform, a wearable GPS hardware and patent-pending middleware suite, creates a one-touch or no-touch trusted network; eliminates usernames and passwords

  • C-level team with more than 100 years of collective experience form a dream team from notable companies such as IBM, Cisco, KPMG, Raytheon, CliQr (acquired by Cisco), SecureAuth, Citrix, Deepnet Security, VMware and others

  • Safeguards against the more than 80 percent of hacking breaches related to weak or compromised passwords

  • Stringent security system aimed at law enforcement, first responders, government, military, finance, healthcare and transportation

SAN FRANCISCO & RSA CONFERENCE — March 4, 2019 — Armor Scientific Holdings, Inc. (Armor Scientific), a cybersecurity company purpose built to manage the identity of everything, today announced the company is emerging from stealth mode. Separately, Armor Scientific announced the public release of the Armor Platform, a converged hardware token and patent-pending middleware suite.

A combination of wearable GPS, biometric hardware, and patent-pending cryptographic and blockchain-enabled middleware, the Armor Platform removes the complexity around identity governance, making authentication as easy as walking into a room.

“The way we identify and authenticate in a digital and connected world will be very different in 10 years,” said Nick Buchanan, CTO of Armor Scientific. “By delivering a fundamentally different approach to adding known devices and people to a trusted network, the Armor Platform reinvents identity and security to be relevant to our modern, hyper-connected world.”

The Armor Platform converges the security of everything and has the following capabilities:

  • Authenticates and authorizes users without the need for a username, password or any other personal information

  • Enables every user and device to be added as a node to an assurance domain powered by cryptographic keys and a blockchain ledger

  • Protects access and only allows activity once the consensus of multiple other nodes have been reached

  • AI- and machine learning-powered risk awareness continuously learns how users work, ensuring geospatial, behavioral and digital interactions are context-aware

Authentication for the Identity of Everything

Over 80 percent of hacking-related breaches leverage weak, default or stolen passwords according to the 2017 Verizon Data Breach Report. Whether a first responder quickly accessing their mobile computing device, a bank verifying a large international wire transaction, or a military officer accessing a critical system, the most sensitive transactions are shackled to outdated and cumbersome authentication methods, including point solutions that don’t work together.

The Armor Platform unifies the entire identity governance lifecycle, removing the barriers (and complexities) between identity control, access control and governance administration. Anomalies are quickly detected, and continuously interrogated for automated authorization response.

Users can experience boundless use-case scenarios, including:

  • Automated login and proximity, location-aware multi-factor access to critical systems for enterprise and government entities

  • Location tracking for law enforcement and first responders

  • Protecting finance with the highest levels of protection for services such as wire transfer processing

  • Healthcare hands-free access to login restricted point of care systems based on proximity

  • Access secure applications, including regulatory applications.

  • Geographically tie users to devices and provide identity assurance

Five Years of Stealth Research & Development

Today’s launch comes on the heels of a five-year period of consolidating direct involvement and feedback from customers deploying highly critical global systems, with more than 100 projects in banking, logistics, healthcare and government industry sectors. Currently Headquartered in Newport Beach, CA, Armor Scientific has put together a unique executive team whose members have previously worked at tech giants and startups.

Armor Scientific executives will be showcasing demos of the Armor Platform at their booth at the RSA Early Stage Expo at the Marriott Marquis, booth #ESE – 33. To learn more or sign up for the beta, please visit www.armorsci.com/.

About Armor Scientific Holdings, Inc. (Armor Scientific)

Based in Newport Beach, CA, Armor Scientific is a cybersecurity company that delivers a next-gen identity governance platform that changes the way users and devices access and work in a trusted environment. The Armor Platform includes a wearable GPS biometric hardware token that eliminates username and password. Users and devices are all protected by location-aware multi factor authentication, a blockchain-enabled cryptographic assurance domain, AI/ML behavior analytics and an outcome-assured workflow engine. For more information, please visit: https://www.armorsci.com/.

Armor Scientific Makes Authentication as Easy as Walking Into a Room

This is a repost from Help Net Security. To read the full article, click here.

Armor Scientific, a cybersecurity company purpose built to manage the identity of everything, announced the company is emerging from stealth mode at the RSA Conference.

Simultaneously, the company released the Armor Platform, a converged hardware token and middleware suite aimed at law enforcement, first responders, government, military, finance, healthcare and transportation.

A combination of wearable GPS, biometric hardware, and patent-pending cryptographic and blockchain-enabled middleware, the Armor Platform removes the complexity around identity governance, making authentication as easy as walking into a room.

“The way we identify and authenticate in a digital and connected world will be very different in 10 years,” said Nick Buchanan, CTO of Armor Scientific. “By delivering a fundamentally different approach to adding known devices and people to a trusted network, the Armor Platform reinvents identity and security to be relevant to our modern, hyper-connected world.”

The Armor Platform has the following capabilities:

  • Authenticates and authorizes users without the need for a username, password or any other personal information

  • Enables every user and device to be added as a node to an assurance domain powered by cryptographic keys and a blockchain ledger

  • Protects access and only allows activity once the consensus of multiple other nodes have been reached

  • AI- and machine learning-powered risk awareness continuously learns how users work, ensuring geospatial, behavioral and digital interactions are context-aware

Authentication for the identity of everything

Over 80 percent of hacking-related breaches leverage weak, default or stolen passwords according to the 2017 Verizon Data Breach Report. Whether a first responder quickly accessing their mobile computing device, a bank verifying a large international wire transaction, or a military officer accessing a critical system, the most sensitive transactions are shackled to outdated and cumbersome authentication methods, including point solutions that don’t work together.

The Armor Platform unifies the entire identity governance lifecycle, removing the barriers (and complexities) between identity control, access control and governance administration. Anomalies are quickly detected, and continuously interrogated for automated authorization response.

Users can experience boundless use-case scenarios, including:

  • Automated login and proximity, location-aware multi-factor access to critical systems for enterprise and government entities

  • Location tracking for law enforcement and first responders

  • Protecting finance with the highest levels of protection for services such as wire transfer processing

  • Healthcare hands-free access to login restricted point of care systems based on proximity

  • Access secure applications, including regulatory applications

  • Geographically tie users to devices and provide identity assurance.

Startup Armor Scientific Launches Multifactor Identity System

This is a repost from DarkReading. To read the full article, click here.

Company aims to replace usernames and passwords by combining GPS location, biometrics, and keys issued through a blockchain-based network.

RSA CONFERENCE 2019 – San Francisco – Many security firms have focused on multifactor authentication (MFA), but startup Armor Scientific hopes that its recipe of location-based authentication paired with biometrics along with a blockchain ledger for key management will help companies improve security and do away with usernames and passwords.

The company, which emerged from stealth on March 4 at the RSA Conference, said it plans to focus initially on first responders and critical jobs that require high security, such as healthcare and financial institutions. Many of those jobs deal with sensitive data, but the workers often do not have time to log in with multiple factors of authentication. The combination exposes high-value data to compromise.

"Law enforcement, first responder — there is automated log-in everywhere in a law enforcement environment," said Scott Mohr, chief security officer at Armor Scientific. "They have to log in, tap in, touch in, or leverage some multiple set of keys, and when an officer leaves the dashcam of his car behind, they don't know where that officer is."

By marrying location information — provided by the GPS-based technology — and biometric information, the company's system will allow first responders and others to access necessary data securely. As an added benefit for first responders, the technology will provide location data on officers and workers, Mohr says.

"What we are able to do is provide the red dot on the map for first responders," he said.

MFA Resistance Fierce
Increasingly, companies are moving to two-factor (2FA) authentication or MFA to allow authorized users and workers access to their systems and services. However, nearly two-thirds of companies have reported facing stiff resistance from workers to adopt two-factor authentication, according to an August 2018 study.

2FA can be slow, so many services providers have adopted a more flexible approach, known as adaptive authentication — allowing additional factors to be requested only during suspicious attempts to access a system or service. While those adaptive solutions are appropriate, often they involve poorly integrated authentication systems, increasing the vulnerability surface area, Mohr said.

"What is happening in today's world, the multifactor solutions that are coming to the table, really all they do is stack multiple technologies on top of one another and create additional layers that ultimately allow hackers more access," he said. "We believe it is compounding the problem and not making us more secure. In addition, you see that the frustration level is going through the roof."

Using Blockchain for Authenticating Devices 
Armor Scientific designed its system from the ground up to integrate all the components and reduce the potential attack surface area, says Nick Buchanan, CTO of Armor Scientific. The company's blockchain approach is not based on code from an open source solution but is created to the specifications required by Armor Scientific's clients, he said.

By using a consensus approach, the blockchain's distributed nature prevents new devices from accessing the network unless three — or more — nodes have verified its authenticity.

"If someone tries to enter the network surreptitiously, none of the nodes respond — it needs to have a signature," Buchanan said. "There is no such thing as anonymous communication on our network. You are either identified or you are not."

While the 2FA market is crowded, Armor Scientific's Mohr and Buchanan said that the focus on specific markets, such as first responders and high-security networks, will help the company stand out.

Armor Scientific Emerges From Stealth with Access Control Platform and Biometric Token

This is a repost from Biometric Update. To read the full article, click here.

“Identity governance startup Armor Scientific has announced its emergence from stealth mode, along with the public release of its Armor Platform, which combines a biometric hardware token with a patent-pending middleware suite.

The hardware token is a wearable device which transmits GPS and fingerprint biometric data to replace usernames and passwords for authentication and authorization. The Armor Platform’s middleware enables every user and device to be added to an assurance domain as a node through cryptographic keys and a blockchain ledger. The platform also applies risk awareness powered by artificial intelligence and machine learning algorithms that continuously analyze user behavior.

“The way we identify and authenticate in a digital and connected world will be very different in 10 years,” says Armor Scientific CTO Nick Buchanan. “By delivering a fundamentally different approach to adding known devices and people to a trusted network, the Armor Platform reinvents identity and security to be relevant to our modern, hyper-connected world.”

The Armor Platform unifies the identity governance lifecycle, and removes barriers between identity control, access control, and governance administration, according to the announcement. The company says its use-cases include automating location-aware multi-factor access to critical systems for enterprise and government entities, location tracking for law enforcement and first responders, secure access to financial or regulatory applications, and hands-free access to restricted healthcare systems based on proximity.”