Resources for Sarbanes-Oxley (SOX)

RSA Offers New Security Tokens for Online Banking

www.banktech.com

SA says one U.S. bank and several abroad are testing the Bedford, Mass.-based vendor's first security token modeled on a credit card. The RSA SecurID Display Card, which is thin and easily fits in a wallet, is another option that RSA's bank clients can offer their own customers when it comes to online security -- specifically, to meet the Federal Financial Institutions Examination Council's (FFIEC) multifactor authentication requirements. The card could possibly be bank-branded, notes Rachael Stockton, product manager of the RSA SecurID card. But customers actually would need a different security card for each bank, she explains. That's partly because the software that manages the authentication process resides with the particular bank.
The latest version of the companion software, RSA Authentication Manager 7.1, released in late May by RSA -- the security division of Hopkinton, Mass.-based EMC -- offers, at additional cost, the option of authenticating customers by using a software token that sits on their cell phones rather than requiring them to carry separate, physical security tokens. Up to 10 financial institutions' tokens could sit on one cell phone, according to Stockton. "Whether it's [physical] fobs, cards, software tokens on a Blackberry, ... banks have different preferences" for security offerings, she says.

View the Resource

Share or bookmarklet this web page at: