Armorlog VPCSML
  • home
  • mail
  • sitemap
  • Computer Network & Security Systems
7Mar/110

Research Analysis

Armorlog™ VPCSML™ Research Analysis

Armorlog TM designed the VPCSML TM authentication interface to protect networks acting on anecdotal evidence often reported in the media that there was a pressing need for such an innovation. It is now becoming apparent from various industry research that is being conducted, that this is the correct solution that will provide significantly improved protection against current forms of attacks against network authentication.

This is because it is now clear from research conducted by companies such as Verizon (Verizon 2010 Data Breach Report) that the most damaging cases of loss involve circumstances where the credentials of a user have been successfully acquired or altered to access the network.

It is also clear from research conducted by the Independent Oracle User Group (IOUG) that more than 68% of organizations cannot tell if they have had a data breach. We argue that given the ease with which the current authentication topology can be circumvented that these events are occurring at much higher rates than anyone is prepared to admit.

We view this with great concern given that there is an ongoing push to outsource information systems management and hosting to networks on which the organisation has far less control over who has access i.e. cloud computing.

A survey conducted by The Ponemon Institute commissioned by Tripwire Inc highlighted that the cost to the respondents who undertook compliance measures  to secure data was on average 3.5million while those that incurred a breach after not complying with the regulatory requirements surveyed incurred on average costs of 9.4 million. This suggests strengthening systems can be significantly cheaper than incurring a breach by continuing to use systems with known weaknesses.

Our technology is designed to reduce the instances of breaches by strengthening the key point of weakness the authentication of a user onto a network.

A survey conducted on over 250,000 user social networking accounts by BitDefender found that over 75% used the same password for multiple accounts. This means an attacker may secure a victims password to gain control of an account by simply enticing them to establish an account at site already controlled by the attacker. Our technology is designed to ensure that an Administrator can have unique passwords for users to protect their network. We have designed the system in such a way that the user can devise a memorable password without the need for undue complexity without a reduction in security that occurs on existing authentication topology.

The Armorlog TM VPCSML TM is a system for securing user network login credentials using a proprietary coding system with unique numbering and character sets that protects users falling victim to attempts steal their user codes e.g. phishing, vishing, smishing & spear phishing attacks. The system also protects networks against more traditional forms of attack such as keyboard logging, screen capture and all known forms of password cracking and guessing. Subcodes using a proprietary character set can be established to be called on to validate transactions to render man in the middle attack software ineffective.

The system is designed to partition access to user logon credentials from operational staff administering the credentials to assist in deterring internal fraud from misuse of account credentials. The system incorporates measures to assist in protecting users from being inconvenienced by DOS attacks and will render malware & traitorware attacks on client side devices ineffective. If implemented correctly the system can also be used to deter sharing of logon credentials which will assist in protecting against diminution of copyright revenues. 

The technology is available via download from the Armorlog web site as a self installing gateway to be interfaced with existing systems or can be embed in existing products for distribution via the Armorlog e-commerce website administered by Digital River Inc the largest software distributor on the world wide web.

© Armorlog 2010

  • delicious Bookmark on Delicious
  • digg Digg this post
  • facebook Recommend on Facebook
  • myspace Share via MySpace
  • reddit share via Reddit
  • stumbleupon Share with Stumblers
  • technorati Share on technorati
  • twitter Tweet about it
  • rss Subscribe to the comments on this post
  • email Tell a friend
  • bookmark Bookmark in Browser

Tagged as: Authentication, Denial of Service Attacks, Device Skimmers, Identity Theft, Keyboard Loggers, Logon, Man in the middle attacks, Password Guessing Programs, Phishing Attacks, Security, Shoulder Browsers, Telephone Scams, Validation, Verification No Comments
7Nov/10Off

Become a Tester with Armorlog

Testers Required.

Armorlog are currently seeking beta testers for the commercial grade release.

Your support would be greatly appreciated.

If you are willing to assist please email Partners@armorlog.com.au

  • delicious Bookmark on Delicious
  • digg Digg this post
  • facebook Recommend on Facebook
  • myspace Share via MySpace
  • reddit share via Reddit
  • stumbleupon Share with Stumblers
  • technorati Share on technorati
  • twitter Tweet about it
  • rss Subscribe to the comments on this post
  • email Tell a friend
  • bookmark Bookmark in Browser

Tagged as: Authentication, Denial of Service Attacks, Device Skimmers, Identity Theft, Keyboard Loggers, Logon, Man in the middle attacks, Password Guessing Programs, Phishing Attacks, Security, Shoulder Browsers, Telephone Scams, Validation, Verification Comments Off
5Nov/100

Intermittent User & Evolving Procedures Risks

Unfamiliar & Intermittent User Risk & Evolving Procedures Risk

A significant risk for phishing attacks are new users and users who do not log on to your system regularly. As they are not as familiar with your organisations’ procedures and culture they may be easily confused into accepting a procedure that is not legitimate and results in their credentials being revealed to an attacker.

Another significant risk factor is evolving organisational procedures. Changes are occurring at a far more rapid pace because of computerisation. Consequently users are becoming desensitised to change and more readily accepting of new procedures and changes in procedures. This readiness to accept changes increases users’ susceptibility to attacks.

As a consequence it is important that the process of authentication operates in such a way that the user cannot accidentally give away their credentials. Armorlogs’ VPCSML technology is designed with these issues in mind.

  • delicious Bookmark on Delicious
  • digg Digg this post
  • facebook Recommend on Facebook
  • myspace Share via MySpace
  • reddit share via Reddit
  • stumbleupon Share with Stumblers
  • technorati Share on technorati
  • twitter Tweet about it
  • rss Subscribe to the comments on this post
  • email Tell a friend
  • bookmark Bookmark in Browser

Tagged as: Authentication, Denial of Service Attacks, Device Skimmers, Identity Theft, Keyboard Loggers, Logon, Man in the middle attacks, Password Guessing Programs, Phishing Attacks, Security, Shoulder Browsers, Telephone Scams, Validation, Verification No Comments
   

Navigate to:

All Information

  • About Us
  • Product Details
  • Research Analysis
  • Become a Tester with Armorlog
  • Armorlog Value Proposition
  • Intermittent User & Evolving Procedures Risks
  • Licencing Details for Distributors and Partners
  • Documents to Download

Follow us

  • Tweet with me
  • Subscribe to my Channel

Share

  • Bookmark on Delicious
  • Digg this
  • Recomend on Facebook
  • Share on Reddit
  • Share with Stumblers
  • Tweet this
  • Tell a friend

Who's Online

  • 0 Members.
  • 3 Guests.
ArmorLog Ltd © 2010. All Rights Reserved ″Variable Proprietary Character Set Multi-layered Login″ & ″VPCSML″ are Trade Marks of Armorlog

Go to top ↑
  • follow:
  • Tweet with me Tweet with me
  • Subscribe to my YouTube Channel Subscribe to my YouTube Channel