RSA partners with mobile VPN and virtual desktop offering providers to deliver strong OTP authentication on mobile applications through the use of the SDKs
EMC’s security division RSA has released a software developer kits (SDKs) designed for mobile application developers to integrate strong one-time password (OTP) or risk-based authentication into mobile applications without the need for a separate authentication device.
RSA said with its new SDK developers can leverage security of RSA SecurID technology or RSA Adaptive Authentication within mobile applications for a variety of device platforms including Android devices, Blackberry devices and Apple iOS
In addition, organisations can reduce the risk of unauthorised access from mobile devices by implementing RSA authentication offerings.
The company said with the SDK’s built-in security, higher assurance for mobile business applications, simple user experience and reduced costs are achieved to deploy authentication.
The RSA SecurID mobile SDK is designed for IT organisations to provision software tokens to mobile devices with less user interaction to enable interoperability with internally developed enterprise applications as well as with popular mobile VPN and virtual desktop clients, said the company.
To deliver strong OTP authentication on mobile applications through the use of the SDK the EMC’s security division is partnering with leading mobile VPN and virtual desktop offering providers, said RSA.
RSA said the total cost of ownership for organisations is decreased with the use of RSA SecurID software tokens. And the RSA SecurID helps in reducing the number of costly technical support calls for misplaced tokens, as they have the software authenticator embedded in the mobile device to be used for secure access to multiple applications.
RSA Adaptive Authentication is a risk-based authentication and fraud detection platform and is designed to be embedded into mobile applications to protect login and post-login user activities by measuring risk indicators to identify high-risk and suspicious activities, said the company.
With RSA SecurID technology or RSA Adaptive Authentication incorporated in mobile applications organisations can be assured that their resources are designed to be protected from unauthorised access without any usability impact to the end user, said RSA.
RSA Identity and Data Protection senior vice-president & group GM Dan Schiappa said mobile device shipments are now outpacing PCs, yet concerns over security persist, especially for enterprises, because of their use on networks that are usually outside of the control of IT departments.
"RSA believes the implementation of strong OTP and risk-based authentication within mobile applications – in a manner that doesn’t diminish the user experience – can help address some of those concerns and help advance development of secure mobile applications across the industry," said Schiappa .
RSA Identity and Data Protection CTO Sam Curry said The implementation of RSA SecurID Technology is an innovative implementation of RSA SecurID software token because the software token is optimised to run in mobile apps in a manner that makes the strong authentication completely hidden from the user.
"Users can securely access a mobile app with their familiar username and PIN while the strong authentication happens in the background. It’s a great example of providing stronger security without sacrificing the simple user experience required in good mobile apps," said Curry.