Intercede Combats Corporate Data Breaches by Extending Strong Identity Beyond Smart Cards

Intercede, the software and service company specializing in identity, credential management and secure mobility, has launched a new Derived Credentials solution backed by Intel® Authenticate. The solution – which aims to combat corporate data breaches – will be included in the revision of the National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) practice guide SP 1800-12 and demonstrated by Intel and Intercede at this year’s RSA Conference on 16-20 April in San Francisco (Moscone Center, Booth #3435 in North Hall).

Over 80% of hacking-related data breaches are caused by weak and/or stolen passwords[1]. With Intercede’s new solution, organizations looking to replace passwords with multi-factor authentication – and those already using secure physical credentials – can now extend strong identity beyond the reach of smart cards, while providing better user experience.

Built on Intercede’s MyID® platform, the solution enables the issuance of Virtual Smart Cards as Derived Personal Identity Verification (PIV) Credentials (DPC). Intercede’s integration of Intel Authenticate Solution is a significant step in enabling strong authentication where smart cards and readers are not practical or convenient, including where organizations make widespread use of tablets and notebook PCs. The solution delivers multi-factor authentication while leveraging an existing secure credential (e.g. a PIV) issued by the federal government.

The solution is fully compliant with NIST’s SP 800-157 guidelines for DPCs and SP 800-63 guidelines for digital identities. It can also be used by commercial organizations that have deployed similar, secure smart card credentials, including companies working to comply with NIST SP 800-171’s strong authentication requirements.

This technology will be included in the NCCoE’s soon-to-be released NIST Cybersecurity Practice Guide (Special Publication 1800-12) detailing the architecture and configuration. It will be demonstrated at Intel’s booth at RSA Conference 2018, in San Francisco, from 16 to 20 April.

Chuck Pol, Intercede’s Chairman said, “I am delighted that NIST has chosen to include MyID and Intel Authenticate Solution in an NCCoE practice guide. Intel and Intercede’s collaboration demonstrates how organizations can deploy hardware-enhanced identities simply and at scale, combining effective protection against the number one cause of data breach – weak user credentials – with a simple user experience.”

“To help alleviate the growing pressures on customers arising from global compliance and regulatory requirements, Intel is committed to delivering end-to-end, hardware-enhanced identity management security solutions for federal and public sector organizations alike,” said Jim Gordon, General Manager of Intel’s Platforms Security Division. “Intercede’s MyID smart card and management platform integrated with Intel® Authenticate Solution offers a positive step forward in providing such a solution.”

“Collaborating with technology vendors to create modular reference designs that solve businesses’ most pressing cybersecurity challenges is key to the NCCoE’s mission,” said NCCoE Deputy Director Tim McBride. “Intercede’s collaboration on the Derived PIV Credential Project will help produce a practical example solution allowing federal employees to authenticate to information systems on their mobile devices without needing a card reader.”

About Intercede

Intercede is a cybersecurity company specializing in digital identities, derived credentials and access control, enabling digital trust in a mobile world.

Headquartered in the UK, with offices in the US, we believe in a connected world in which people and technology are free to exchange information securely, and complex insecure passwords become a thing of the past.

Our vision is to make the highest levels of cybersecurity available to organizations and consumers alike, solving complexity and scalability issues by managing high volumes of digital credentials.

We have been delivering trusted solutions to high profile customers for over 20 years. Our team of experts has deployed millions of identities to governments, most of the largest aerospace and defense corporations, and major financial services and healthcare organizations, as well as leading telecommunications, cloud services and information technology firms, providing industry-leading employee and customer credential management systems.

For more information visit: www.intercede.com.

 

[1] Verizon Data Breach Investigations Report 2017