Risk
10/27/2009
01:34 PM
Connect Directly
RSS
E-Mail
50%
50%

SAP, Nokia Partner On Mobile Security

With the joint venture's technology, prescription drugs, software, and other goods could be tagged with smart barcodes to protect them from counterfeiting.

SAP, Nokia, and a German-based supplier of security technologies have formed a company that will let businesses use smartphones to track products that are susceptible to counterfeit and piracy.

The company, called Original1, will be headquartered in Frankfurt, Germany, and will offer product authentication and anti-counterfeit services across the globe.

Specifically, using Original1's products, manufacturers would tag prescription drugs, packaged software, designer-labeled products, and other items susceptible to counterfeit with smart barcodes. Personnel both in the supply chain and at retail sites would be able to verify the identity of products by swiping them against a reader on their Nokia smartphones and matching that information to a database.

Original1's services will use SAP server software and Nokia's mobile authentication software. Germany-based Giesecke & Devrient, which is the third owner of Original1, will supply the security and ID-related technologies, including user authentication and data encryption. Claudia Alsdorf, currently VP of SAP Research, will head Original1, which is scheduled to open by year's end.

"We see a big business opportunity in brand protection services," said Antti-Jussi Suominen, GM of commerce, corporate development at Nokia, in a prepared statement. "Nokia started a mobile phone-based product authentication business program in 2006; this joint venture is a logical step in evolving that business."


InformationWeek Analytics has published a report on the 10 steps to effective data classification. Download the report here (registration required).

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0103
Published: 2014-07-29
WebAccess in Zarafa before 7.1.10 and WebApp before 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files.

CVE-2014-0475
Published: 2014-07-29
Multiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. (dot dot) in a (1) LC_*, (2) LANG, or other locale environment variable.

CVE-2014-0889
Published: 2014-07-29
Multiple cross-site scripting (XSS) vulnerabilities in IBM Atlas Suite (aka Atlas Policy Suite), as used in Atlas eDiscovery Process Management through 6.0.3, Disposal and Governance Management for IT through 6.0.3, and Global Retention Policy and Schedule Management through 6.0.3, allow remote atta...

CVE-2014-2226
Published: 2014-07-29
Ubiquiti UniFi Controller before 3.2.1 logs the administrative password hash in syslog messages, which allows man-in-the-middle attackers to obtains sensitive information via unspecified vectors.

CVE-2014-3020
Published: 2014-07-29
install.sh in the Embedded WebSphere Application Server (eWAS) 7.0 before FP33 in IBM Tivoli Integrated Portal (TIP) 2.1 and 2.2 sets world-writable permissions for the installRoot directory tree, which allows local users to gain privileges via a Trojan horse program.

Best of the Web
Dark Reading Radio