This article can also be found in the Premium Editorial Download "Information Security magazine: Security Products Readers' Choice Awards 2007."
Download it now to read this article plus other related content.
GOLD | RSA SecurID
Price: $2,995 for an annual subscription
For Andy Pruitt, chief technology officer for Backstop Solutions Group, an on-demand platform for hedge funds, RSA was the only vendor that
Web-based services, compliance and the continual onslaught of data breaches are fueling the market for stronger authentication. As a vendor with more than 20 years experience, it came as no surprise that RSA Security and its SecurID came on top.
The reasons it edged out its competitors: ease of use, integration and compatibility, according to readers who use the product.
When Backstop Solutions Group started to look at authentication products last July, it brought in a number of vendors. Initial meetings went well, but when Backstop started to get more specific about its needs, "that's when things started to fall apart," says Pruitt. Backstop's development environment was JBoss, "and when you are Java-based there is no comparison [between RSA and other vendors]," Pruitt says.
While Pruitt was willing to make the authentication investment because his users are high net-worth customers, traditionally cost has been a barrier to the market's widespread growth, industry watchers say.
Toffer Winslow, vice president of product management and product marketing for RSA, disagrees. While RSA SecurID tokens appear higher priced, he admits, "when you evaluate total cost of ownership and the amount of integration, we are much better [priced] than the competition," he says. Because of a rigorous certification process, RSA has been working with 300 of the top applications. "We know they work with SecurID," Winslow says.
In fact more than three quarters of readers surveyed said they were pleased with the ROI and felt they were getting their money's worth from SecurID.
And RSA has continued to innovate beyond tokens to secure other types of devices and applications. At RSA Conference 2006, the company unveiled the SecurID Toolbar Token and RSA SecurID SID900 Transaction Signing Token to secure online transactions through digital signatures. The company, now a division of EMC, also recently announced partnerships with Research in Motion, SanDisk and Motorola, among others, to use its technology to secure BlackBerries, cell phones and USB flash drives.
"The goal is to get RSA credentials everywhere," says Winslow.
SILVER | VeriSign PKI
Price: $19.95 per certificate
VeriSign took silver with its range of PKI services. The company edged out the competition due to its top scores in the ease-of-use and response categories, where more than 70 percent of readers rated it highly. During the past year the company has expanded its reach with the acquisitions of GeoTrust, an SSL certificate supplier, and SnapCentric, a provider of online fraud detection solutions that help companies comply with FFIEC regulations. VeriSign also announced its Extended Validation (EV) SSL certificates that support Microsoft's IE 7 and Vista and incorporate technology that enables Windows XP clients using IE 7 to display the same green address bar for Web site authentication as Vista clients.
BRONZE | ActivIdentity Smart Cards
ActivIdentity, formerly known as ActivCard, took the bronze. Readers were pleased with the scalability of its products and end user ease of use. ActivIdentity offers solutions including physical/photo ID, logical access using SSO to incorporate resources, secure remote access, and digital signature and encryption of email and documents. Within the past six months, the company has broadened its solutions for the Sun, Novell and Microsoft platforms. It recently bolstered its health care suite with SecureLogin Kiosk and announced that its Mini Token OE and ActivIdentity Authentication SDK support the HMAC One-Time password algorithm developed by OATH.
This was first published in April 2007