Search



AuthenticationWorld.Com

About

This page contains a single entry from the blog posted on June 30, 2007 12:09 PM.

The previous post in this blog was Burton Group Catalyst - Seriosity.

The next post in this blog is Burton Group Catalyst - Compliance and Audit.

Many more can be found on the main index page or by looking through the archives.

Subscribe to this blog's feed
[What is this?]

« Burton Group Catalyst - Seriosity | Main | Burton Group Catalyst - Compliance and Audit »

Burton Group Catalyst - Walking the Halls

During the Catalyst conference I bumped into three guys from a company called "imagicsoftware". They have a patented system for using biometric typing rhythms to use as an authentication mechanism. When I indicated that this was good but I thought it could be susceptible to a replay attack I was told that this wasn't the case. They have "something in the software" that prevents robotic type attacks.

Assuming, for the moment, that this is true, it offers a possible advancement on the use of passwords and as such should be considered. However, remember that this form of authentication is, in my own personal opinion, open to a man in the middle attack where the criminal simple passes along the authentication. Thus this method as with many other authentication methods still doesn't solve for phishing attacks where the man in the middle passes along the authentication.

Guy
www.authenticationworld.com
guy.huntington@authenticationworld.com

Posted by Guy Huntington on June 30, 2007 12:09 PM |

TrackBack

TrackBack URL for this entry:
http://www.authenticationworld.com/cgi-bin/blog/mt-tb.cgi/247

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)