Contact SecurEnvoy
- Home
- Products
- Partners
- Customers
- Support
- News
- Company
Up to 60% cheaper than a token, click
here for
an excel calculator
2008
Product ReviewEasy of Use
Value for Money
Support
”particulary
well suited to businesses with a largeremote workforce”
Products
SecurAccess
SecurICE
SecurPassword
SecurMail
SecurAccess
Turn ANY GSM mobile phone into an authentication token by texting one time passcodes
No Additional Hardware Token required ...
SecurICE
SecurICE from SecurEnvoy is a revolutionary approach to the age-old problem of providing
secure access to corporate systems in the event of an emergency.
SecurPassword
SecurPassword from SecurEnvoy enables Microsoft Windows domain users to reset their
own password using mobile phones to create two-factor authentication.
SecurMail
SecurMail enables individuals to send and receive email across the internet using
standards based https and strong two-factor authentication of the recipient.
Latest News
March 2010
SecurEnvoy to exhibit at Infosecurity Europe in London 27-29 April 2010SecurEnvoy to exhibit at Infosecurity Europe in London's Earls Court on the
27th to 29th of April 2010.
See us at stand H60.
See us presenting in the Technical Track on Tuesday, Wednesday and Thursday.
Also see us presentating in the Business Track.
February 2010
Network Computing Magazine Reviews SecurAccess 5.3SecurEnvoy's 5.3 release of its market leading SecurAccess solution can be reviewed in the latest Network Computing Magazine. Existing customers can now upgrade and reap the benefits of the additional features 5.3 bring to the market. These new features yet again ensure that SecurAccess continues to lead the market in Tokenless Two Factor Authentication.
February 2010
SecurEnvoy to exhibit at CeBIT in Hanover March 2nd – March 6thSecurEnvoy will be exhibiting at CeBIT in Hanover (March 2nd – March 6th). Come and visit us at Stand F36 in the Security Hall (Hall 11) to see a demonstration from the innovators of SMS Tokenless Two Factor Authentication solutions. We will also be launching our latest managed services offering, based upon yet another inspirational commercial approach for partners and customers alike.
January 2010
Cambridge City Council roles out SecurAccess to aid CoCo compliant.The residents of Cambridge elect 42 councillors across 14 wards, who are responsible for setting the budget and policy framework in the city. Backing up every decision and policy change is a workforce of hundreds of employees who ensure that any decisions made by the council are successfully implemented at a practical level.
In order to ensure that the council’s civic responsibility can be met, many of Cambridge City Council’s employees needs to be in constant contact with the organisations, businesses and individuals of Cambridge, and with colleagues at the Council itself.
This involves taking calls from the public, visiting homes and businesses, coordinating with council members and relaying information back to the council’s central system to ensure that data is kept current and comprehensive.
When dealing with a wealth of information regarding such a wide variety of businesses and organisations, however, there is an inherent security risk – any information mishandled, lost or stolen is a potentially damaging security breach, both for the council and those that it works with.
“The Council encourages employees to maintain a good work/life balance, and being able to log on remotely is an important part of this,” said James Nightingale, Head of ICT Client Services at Cambridge City Council. “However, the more remote workers you have, the more the IT security risk goes up – how can the IT team tell users are who they claim to be when logging on remotely?”
Additionally, the Council had to prove it was compliant with the Government’s GSCX Code of Connection (known as CoCo). CoCo is part of Government Connect – the pan-government programme providing an accredited and secure network between central government and every local authority (LA) in England and Wales. All LAs must be compliant with CoCo’s code of practice to prove they have the necessary network security measures in place.
“To comply with CoCo, it was absolutely necessary to have a system in place to make remote access for our employees more secure,” Nightingale continued. “Dealing with information from so many different businesses, people and organisations while on the move is the nature of the job, so there needed to be a way to do that as securely as possible.”
Cambridge City Council began to consider ways in which it could authenticate remote users to facilitate mobile and home working.
A number of other councils around the UK utilise a token-based authentication system, whereby employees pick up a token containing an authentication code that allows them to connect to the system remotely. The main problem facing this option, however, is the time and effort needed to distribute each token to employees.
“The authentication token as a security measure is incredibly time consuming,” said Nightingale. “Staff would have to fill out access request forms, then make a physical appointment to come into the council offices and pick up the token, wasting a lot of time for admin workers and users.”
A token-based system also generates a myriad of other issues – the hardware is often lost, they are easily broken, and creating the large quantities of tokens incurs huge expenses. Frequently, tokens were stored with laptops so if the computer was stolen, the authenticator would go with it.
It therefore seemed logical for Cambridge City Council to turn to SecurAccess, which negates the need for tokens by using employees’ mobile phones to deliver authentication codes.
“The main goal was to achieve CoCo compliance, while keeping any new systems as user-friendly as possible,” said Nightingale. “But in this tight economic period we wanted to do this without wasting council money on unnecessary expenditure.”
“The roll-out of the software at the Council was painless – it took just a few days, and employees got used to the system very quickly,” said Stev
December 2009
Lincoln City Council switches to SecurEnvoy tokenless authentication The Lincoln City Council has nine remote offices, with over 600 members of staff. The Council is responsible for local planning, building control, roads and council housing. With over 80,000 residents in Lincoln, the Council has to handle a vast amount of confidential information. Data security is always a concern – authenticated access must be easy to use, reliable and above all secure.
Two-factor authentication is not a new concept but it has been troubled by ongoing difficulties with system integration and users lacking confidence when using the product. City of Lincoln Council already had an existing two-factor authentication system, which required the use of hardware tokens. The Council was looking to reduce the cost of its managed token provider as the contract with them was ending. SecurEnvoy was just in time to help the Council migrate its authentication system.
“We required a cost effective, secure, reliable and flexible solution providing two-factor authentication for remote access,” said Dave Wormall, Principal IT officer at the Council. “We evaluated three products, including our existing supplier, during the selection process. SecurEnvoy’s cost effectiveness, ‘In Case of Emergency’ (ICE) services and reliability came through as the primary choice.”
The two-factor authentication technology from SecurEnvoy, SecurAccess transforms any mobile phone into a makeshift authentication device. This eco-friendly solution is cost-effective because there is no need to purchase additional hardware.
“We had less than a month before our tokens needed replacing and were concerned that we wouldn’t have time to migrate to a new solution,” said Wormall.
SecurEnvoy’s Deployment Wizard configured multiple accounts for the authentication switch to take place. With a single click, multiple users were migrated quickly and effectively to the new SecurAccess system. The process took less than a minute.
Even though the Council operates on two different remote access solutions, one Windows-based and one Linux-based, SecurEnvoy’s solution configured both channels easily and quickly.
For SecurEnvoy, configuring the Council’s existing authentication system to SecurAccess was simple. However, convincing the Council staff that extra hardware was no longer necessary in ensuring data security was a little bit more difficult.
Some Council members and councillors feared change and were comfortable using their traditional tokens, they were initially apprehensive about a text message based solution. After using tokenless two-factor authentication they soon realised that it was just as reliable and secure with the added bonus that they no longer needed to carry yet another device.
“The City of Lincoln Council’s home and flexible working policy will ensure that SecurEnvoy’s remote access services will always be in demand,” said Wormall.
SecurEnvoy has been able to help the Council reach its goals to find a top-notch security solution at a fraction of the price of its competitors.
November 2009
Reports about the death of the hardware two-factor authentication
have been very premature.Reports about the death of the hardware two-factor authentication
have been very premature.
Following claims by Goode Intelligence that mobile authentication
market is predicted to grow significantly over the next five years but
with major vendors losing ground to authentication specialists, SMS
authentication providers SecurEnvoy, further claimed that the trend
will mean the death of the hardware token.
However Dave Abraham, CEO at Signify, claimed that the death of
the token is greatly exaggerated. He said that while the demand for
two-factor authentication is on the rise, and this sounds ideal, it is
not the full picture as the simple truth is that tokens remain the best
solution for frequent users who rely on getting secure remote access
to systems and information from any computer at any time.
Abraham said: “Road warriors, home workers or systems engineers,
for example, often log into many different portals every day and
requesting or obtaining passcodes from a mobile phone or PDA is far
too much hassle.
“What's more, tokens are not limited to a particular platform such as
Windows and are not reliant on how secure a mobile phone network
is, good network coverage or the battery life of the phone. They are
also more robust. RSA tokens will work even if dropped from a great
height or it they fall in a glass of water. The same is not true of the
mobile phone.”
He said that despite this, there is room for tokenless authentication
as it is ideal for infrequent or temporary users and for those that
simply do not want to carry a separate device, such as occasional
users, contractors, part-time staff and those checking email from
home.
“The reality is that it's a case of ‘horses for courses', depending on the organisations, the user's working
requirements and the data and applications they are accessing. In fact, for most organisations the question
shouldn't be which option to go for, but what combination of token and tokenless authentication they need,”
said Abraham.
“The ability to mix both token-based and tokenless two-factor authentication within an organisation means
that authentication can be tailored to meet specific needs, budgets and working patterns. But, having
realised the benefits of deploying both token and tokenless two-factor authentication, the problem
organisations will face is that most two-factor authentication vendors will only offer one or the other.”
November 2009
The growth in mobile authentication will see the death of the hardware token according to one vendor.The growth in mobile authentication will see the death of the hardware token according to one vendor.
Following news from Goode Intelligence that the mobile authentication market is predicted to grow significantly over the next five years, but with major vendors losing ground to authentication specialists, one vendor has claimed that nearly half of UK organisations have plans to authenticate their staff via SMS by 2011.
Andy Kemshall, co-founder at SecurEnvoy, claimed that the trend will mean the death of the hardware token.
Kemshall said: “Everything is going mobile these days and this will only continue in the coming years. With 40 per cent of organisations turning to mobile authentication by 2011, as predicted by Goode Intelligence, I believe the separate hardware token alternative will begin to drop off the radar.
“This technology was invented around the same time as VHS tapes, while SMS based tokenless technology emerged at a similar time to Blu-Ray. The development of VHS to Blu-Ray is simply technological evolution. In the same way, change from token to tokenless technology is inevitable.”
Kemshall claimed that as most people have a mobile phone already, there are no addition costs to authentication over the mobile network and phones are a much greener alternative.
“There is also the burden of carrying hardware tokens. Staff rarely forget their mobile, but all too often tokens are misplaced or malfunction and have to be re-ordered, costing time and money,” he said.
News Archive
March 2010
SecurEnvoy to exhibit at Infosecurity Europe in London 27-29 April 2010SecurEnvoy to exhibit at Infosecurity Europe in London's Earls Court on the
27th to 29th of April 2010.
See us at stand H60.
See us presenting in the Technical Track on Tuesday, Wednesday and Thursday.
Also see us presentating in the Business Track.
February 2010
Network Computing Magazine Reviews SecurAccess 5.3SecurEnvoy's 5.3 release of its market leading SecurAccess solution can be reviewed in the latest Network Computing Magazine. Existing customers can now upgrade and reap the benefits of the additional features 5.3 bring to the market. These new features yet again ensure that SecurAccess continues to lead the market in Tokenless Two Factor Authentication.
February 2010
SecurEnvoy to exhibit at CeBIT in Hanover March 2nd – March 6thSecurEnvoy will be exhibiting at CeBIT in Hanover (March 2nd – March 6th). Come and visit us at Stand F36 in the Security Hall (Hall 11) to see a demonstration from the innovators of SMS Tokenless Two Factor Authentication solutions. We will also be launching our latest managed services offering, based upon yet another inspirational commercial approach for partners and customers alike.
January 2010
Cambridge City Council roles out SecurAccess to aid CoCo compliant.The residents of Cambridge elect 42 councillors across 14 wards, who are responsible for setting the budget and policy framework in the city. Backing up every decision and policy change is a workforce of hundreds of employees who ensure that any decisions made by the council are successfully implemented at a practical level.
In order to ensure that the council’s civic responsibility can be met, many of Cambridge City Council’s employees needs to be in constant contact with the organisations, businesses and individuals of Cambridge, and with colleagues at the Council itself.
This involves taking calls from the public, visiting homes and businesses, coordinating with council members and relaying information back to the council’s central system to ensure that data is kept current and comprehensive.
When dealing with a wealth of information regarding such a wide variety of businesses and organisations, however, there is an inherent security risk – any information mishandled, lost or stolen is a potentially damaging security breach, both for the council and those that it works with.
“The Council encourages employees to maintain a good work/life balance, and being able to log on remotely is an important part of this,” said James Nightingale, Head of ICT Client Services at Cambridge City Council. “However, the more remote workers you have, the more the IT security risk goes up – how can the IT team tell users are who they claim to be when logging on remotely?”
Additionally, the Council had to prove it was compliant with the Government’s GSCX Code of Connection (known as CoCo). CoCo is part of Government Connect – the pan-government programme providing an accredited and secure network between central government and every local authority (LA) in England and Wales. All LAs must be compliant with CoCo’s code of practice to prove they have the necessary network security measures in place.
“To comply with CoCo, it was absolutely necessary to have a system in place to make remote access for our employees more secure,” Nightingale continued. “Dealing with information from so many different businesses, people and organisations while on the move is the nature of the job, so there needed to be a way to do that as securely as possible.”
Cambridge City Council began to consider ways in which it could authenticate remote users to facilitate mobile and home working.
A number of other councils around the UK utilise a token-based authentication system, whereby employees pick up a token containing an authentication code that allows them to connect to the system remotely. The main problem facing this option, however, is the time and effort needed to distribute each token to employees.
“The authentication token as a security measure is incredibly time consuming,” said Nightingale. “Staff would have to fill out access request forms, then make a physical appointment to come into the council offices and pick up the token, wasting a lot of time for admin workers and users.”
A token-based system also generates a myriad of other issues – the hardware is often lost, they are easily broken, and creating the large quantities of tokens incurs huge expenses. Frequently, tokens were stored with laptops so if the computer was stolen, the authenticator would go with it.
It therefore seemed logical for Cambridge City Council to turn to SecurAccess, which negates the need for tokens by using employees’ mobile phones to deliver authentication codes.
“The main goal was to achieve CoCo compliance, while keeping any new systems as user-friendly as possible,” said Nightingale. “But in this tight economic period we wanted to do this without wasting council money on unnecessary expenditure.”
“The roll-out of the software at the Council was painless – it took just a few days, and employees got used to the system very quickly,” said Stev
December 2009
Lincoln City Council switches to SecurEnvoy tokenless authentication The Lincoln City Council has nine remote offices, with over 600 members of staff. The Council is responsible for local planning, building control, roads and council housing. With over 80,000 residents in Lincoln, the Council has to handle a vast amount of confidential information. Data security is always a concern – authenticated access must be easy to use, reliable and above all secure.
Two-factor authentication is not a new concept but it has been troubled by ongoing difficulties with system integration and users lacking confidence when using the product. City of Lincoln Council already had an existing two-factor authentication system, which required the use of hardware tokens. The Council was looking to reduce the cost of its managed token provider as the contract with them was ending. SecurEnvoy was just in time to help the Council migrate its authentication system.
“We required a cost effective, secure, reliable and flexible solution providing two-factor authentication for remote access,” said Dave Wormall, Principal IT officer at the Council. “We evaluated three products, including our existing supplier, during the selection process. SecurEnvoy’s cost effectiveness, ‘In Case of Emergency’ (ICE) services and reliability came through as the primary choice.”
The two-factor authentication technology from SecurEnvoy, SecurAccess transforms any mobile phone into a makeshift authentication device. This eco-friendly solution is cost-effective because there is no need to purchase additional hardware.
“We had less than a month before our tokens needed replacing and were concerned that we wouldn’t have time to migrate to a new solution,” said Wormall.
SecurEnvoy’s Deployment Wizard configured multiple accounts for the authentication switch to take place. With a single click, multiple users were migrated quickly and effectively to the new SecurAccess system. The process took less than a minute.
Even though the Council operates on two different remote access solutions, one Windows-based and one Linux-based, SecurEnvoy’s solution configured both channels easily and quickly.
For SecurEnvoy, configuring the Council’s existing authentication system to SecurAccess was simple. However, convincing the Council staff that extra hardware was no longer necessary in ensuring data security was a little bit more difficult.
Some Council members and councillors feared change and were comfortable using their traditional tokens, they were initially apprehensive about a text message based solution. After using tokenless two-factor authentication they soon realised that it was just as reliable and secure with the added bonus that they no longer needed to carry yet another device.
“The City of Lincoln Council’s home and flexible working policy will ensure that SecurEnvoy’s remote access services will always be in demand,” said Wormall.
SecurEnvoy has been able to help the Council reach its goals to find a top-notch security solution at a fraction of the price of its competitors.
November 2009
Reports about the death of the hardware two-factor authentication
have been very premature.Reports about the death of the hardware two-factor authentication
have been very premature.
Following claims by Goode Intelligence that mobile authentication
market is predicted to grow significantly over the next five years but
with major vendors losing ground to authentication specialists, SMS
authentication providers SecurEnvoy, further claimed that the trend
will mean the death of the hardware token.
However Dave Abraham, CEO at Signify, claimed that the death of
the token is greatly exaggerated. He said that while the demand for
two-factor authentication is on the rise, and this sounds ideal, it is
not the full picture as the simple truth is that tokens remain the best
solution for frequent users who rely on getting secure remote access
to systems and information from any computer at any time.
Abraham said: “Road warriors, home workers or systems engineers,
for example, often log into many different portals every day and
requesting or obtaining passcodes from a mobile phone or PDA is far
too much hassle.
“What's more, tokens are not limited to a particular platform such as
Windows and are not reliant on how secure a mobile phone network
is, good network coverage or the battery life of the phone. They are
also more robust. RSA tokens will work even if dropped from a great
height or it they fall in a glass of water. The same is not true of the
mobile phone.”
He said that despite this, there is room for tokenless authentication
as it is ideal for infrequent or temporary users and for those that
simply do not want to carry a separate device, such as occasional
users, contractors, part-time staff and those checking email from
home.
“The reality is that it's a case of ‘horses for courses', depending on the organisations, the user's working
requirements and the data and applications they are accessing. In fact, for most organisations the question
shouldn't be which option to go for, but what combination of token and tokenless authentication they need,”
said Abraham.
“The ability to mix both token-based and tokenless two-factor authentication within an organisation means
that authentication can be tailored to meet specific needs, budgets and working patterns. But, having
realised the benefits of deploying both token and tokenless two-factor authentication, the problem
organisations will face is that most two-factor authentication vendors will only offer one or the other.”
November 2009
The growth in mobile authentication will see the death of the hardware token according to one vendor.The growth in mobile authentication will see the death of the hardware token according to one vendor.
Following news from Goode Intelligence that the mobile authentication market is predicted to grow significantly over the next five years, but with major vendors losing ground to authentication specialists, one vendor has claimed that nearly half of UK organisations have plans to authenticate their staff via SMS by 2011.
Andy Kemshall, co-founder at SecurEnvoy, claimed that the trend will mean the death of the hardware token.
Kemshall said: “Everything is going mobile these days and this will only continue in the coming years. With 40 per cent of organisations turning to mobile authentication by 2011, as predicted by Goode Intelligence, I believe the separate hardware token alternative will begin to drop off the radar.
“This technology was invented around the same time as VHS tapes, while SMS based tokenless technology emerged at a similar time to Blu-Ray. The development of VHS to Blu-Ray is simply technological evolution. In the same way, change from token to tokenless technology is inevitable.”
Kemshall claimed that as most people have a mobile phone already, there are no addition costs to authentication over the mobile network and phones are a much greener alternative.
“There is also the burden of carrying hardware tokens. Staff rarely forget their mobile, but all too often tokens are misplaced or malfunction and have to be re-ordered, costing time and money,” he said.
News Archive
