Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Mobile

10/16/2012
04:19 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

HID Global Identity Assurance partners With Precise Biometrics To Deliver Strong Authentication For iOS

New solution combines ActivClient Mobile Software Development Kit (SDK) for iOS with two sleeves from Precise Biometrics

IRVINE, Calif., October 14, 2012– HID Global®, a worldwide leader in secure identity solutions, will, today announced a solution for government agencies interested in securing iOS devices with access to sensitive data. The solution combines the recently announced ActivClient Mobile Software Development Kit (SDK) for iOS &trade with two sleeves from Precise Biometrics: the Tactivo&trade iPhone® sleeve and the Tactivo&trade iPad® sleeve. This solution enables government agencies of all kinds to use their Common Access Card (CAC) or Personal Identity Verification (PIV) cards to secure communications and access to sensitive information by encrypting it through standard Public Key Infrastructure (PKI) encryption methods.

"The massive popularity of iOS devices has completely changed the way organizations of all types, including government, approach how these devices access information," said Thomas Marschall, Precise Biometrics President & CEO. "Our solution with HID Global takes a pragmatic approach to the problem, ensuring that the CAC and PIV cards already in use can now secure the mobile devices government employees are already using."

For government agencies interested in deploying a more integrated solution, HID Global offers a solution leveraging "derived credentials", a concept recently introduced in the FIPS 201-2 PIV standard, which is currently in draft form. The integrated approach taken by HID Global applies the "derived credential" to a secure microSD card, a secure element with the same cryptographic services as the CAC or PIV smart card. This microSD format can be connected to iPhones with a sleeve. This approach brings both significantly increased convenience and security to the iPhone BYOD scenarios.

The ActivClient Mobile Software Development Kit (SDK) for iOS enables application developers and government entities to deliver two-factor authentication, signature and decryption technologies for all iOS devices, including iPhone and iPad. These devices have led the charge in the Bring-Your-Own-Device (BYOD) phenomenon, causing a shift in the way government employees access their corporate email and other resources.

The Precise Biometrics Tactivo&trade Smart Card & Fingerprint Reader enables multi-factor authentication on iPad and iPhone, supporting U.S. government credentials including PIV, PIV-I, CAC and TWIC, as well as the Precise Match-on-Card credentials used in many national IDs. As a smart casing that slips easily over the device, Tactivo&trade makes security convenient and easy to use; pass-through charging and synchronization and a slim design mean users don't have to remove the casing for regular, daily use. Tactivo&trade for iPad was also designed to accommodate the popular iPad Smart Cover®.

"It is incredibly important for us to bridge the gap from the cards in use today to the mobile devices of the future," said Julian Lovelock, vice president of product marketing, Identity Assurance, with HID Global. "As the market shifts from workstations to smartphones and tablets, there is an increased use of these devices to access corporate emails and resources. By incorporating our iOS SDK with sleeves like those from Precise Biometrics, we ensure a smooth transition for government agencies and their employees."

ActivClient Mobile SDK for iOS provides a layer of middleware that connects strong two-factor authentication credentials to applications and encrypted 'containers' running secure application stacks on the mobile device. HID Global's new ActivClient SDK supports a previously unseen standard of secure BYOD usage by enabling the benefits of pervasive smart mobile devices, with reasonable and responsible enterprise policy enforcement for even for the most security-minded enterprise and government organizations.

ActivClient Mobile SDK for iOS currently supports several hardware options:

Three types of smart cards: standard-compliant PIV and CAC smart cards and the HID Global CrescendoÒ 1150

The Precise Biometrics Tactivo&trade

One MicroSD option: the ActivIdentity secure microSD

Availability

The HID Global ActivClient Mobile SDK for iOS and the Precise Biometrics Tactivo&trade are available now.

About Identity Assurance Solutions

HID Global's Identity Assurance Solutions enable customers to prove and establish trust in a person's identity when accessing resources on the network. The business's strong authentication and smart card solutions are relied upon by more agencies, including the U.S. Department of Defense, than any other provider, and has issued more than 100 million credentials to enterprise, government and commerce customers. The Identity Assurance Solutions business (formerly ActivIdentity) is headquartered in Silicon Valley, California. For more information, visit www.actividentity.com.

About HID Global

HID Global is the trusted source for innovative products, services, solutions, and know-how related to the creation, use, and management of secure identities for millions of customers around the world. The company's served markets include physical and logical access control, including strong authentication and credential management; card printing and personalization; visitor management systems; highly secure government and citizen ID; and identification RFID technologies used in animal ID and industry and logistics applications. Primary brands are ActivIdentity®, EasyLobby®, FARGO® and HID®. Headquartered in Irvine, California, HID Global has over 2,000 employees worldwide and operates international offices that support more than 100 countries. HID Global® is an ASSA ABLOY Group brand. For more information, visit www.hidglobal.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Eric_Brown
50%
50%
Eric_Brown,
User Rank: Apprentice
10/22/2012 | 4:51:08 PM
re: HID Global Identity Assurance partners With Precise Biometrics To Deliver Strong Authentication For iOS

It's
nice to see another company giving users the perfect balance between security
and user experience by implementing 2FA which allows us to telesign into our
accounts. I know some will claim this make things more complicated, but the
slight inconvenience each time you log in is worth the confidence of knowing
your info is secure. I'm hoping that more companies start to offer this
awesome functionality. This should be a prerequisite to any system that wants
to promote itself as being secure.
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-12512
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting
CVE-2020-12513
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.
CVE-2020-12514
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd
CVE-2020-12525
PUBLISHED: 2021-01-22
M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted data in its project storage.
CVE-2020-12511
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a Cross-Site Request Forgery (CSRF) in the web interface.