SAN JOSE, CA--(Marketwired - Oct 10, 2017) - SPYRUS, Inc. today announced the issuance of US patent 9,742,561 for remote authenticated logon of a computing device via shares of a secret that are delivered over a network. SPYRUS uses the Shamir mathematical algorithm to create and distribute among servers secret shares whereby a defined minimum number of shares is required to be collected in order to reconstruct and activate the secret key over the network. Subsequent to logon, the secret key can also be used as an index to unique attributes incorporating parameters such as geolocation, domain, biometrics, and even platform device characteristics.
Intellectual property covered by the '561 patent provides major security protection advantages over other remote computer device authentication schemes because it does not require the use or storage of passcodes or tokens anywhere in the system. By using the Shamir secret sharing algorithm, and preprovisioning servers, authentication for secure device boot-up or log-on can be facilitated by broadcast self-discovery protocols that do not require server addresses. Since there is no need for passcode, biometric, or token repositories or sign-on credentials, a major target for stolen credential and password security breaches is removed from the system, also permitting computing platforms to be "headless" and placed in difficult or hostile environments since the system does not require human intervention. The '561 patent is also applicable to cloud based identity management, whereby biometric enrollment, authentication, and even the fulfillment of credentials can benefit from the significantly enhanced security. Disaggregating the biometric template into two or more shares via a distributed network mitigates threats due to tampering.
The '561 patent joins the ever growing repertoire of SPYRUS patents relevant to the connected universe, including the recently announced US Patents 7,356,692, "Method and system for enforcing access to a computing resource using a Licensing Attribute Certificate" and 9,521,123 for Secure File Encryption. SPYRUS' IP portfolio is complemented by the company's recent addition to Microsoft Azure Certified for Internet of Things (IoT), ensuring customers get secure IoT solutions up and running quickly with hardware and software that has been pre-tested and verified to work with Microsoft Azure IoT services.
"Hackers accompanied by continued evolution in malware have increased the attack surface in cyberspace to become increasingly successful at penetrating secrets-based systems," said Tom Dickens, SPYRUS COO. "In conjunction with our repertoire of encryption products, SPYRUS Intellectual Property creates a compelling ensemble with utility in the Internet of Things, cloud based IDaM systems, and mission critical applications such as telematics, payment systems, and wearable computing. Made in the USA, all SPYRUS products are FIPS 140-2 Level 3, verified by NIST, and employ the highest level of military grade security functions available in a non-classified commercial environment."
The scope of this patent lends itself to the rapidly evolving needs of the Internet of Things, cloud based identity management, electronic payments, and the use of mobile devices as digital proxies to get access to networked assets. Incorporation of this technology will also provide a means to leapfrog the issues facing device based biometrics, such as lack of portability and difficulties in authenticating across a wide range of user interfaces. In particular, the '561 patent will be applicable to the increasingly strict standards for authentication for financial transactions such as the European Union's Payment Services Directive 2 (PSD2) which requires multifactor or "strong customer authentication" for electronic payment services.
The schema described in the '561 patent will be supported across the FIPS 140-2 Level 3 certified Rosetta® microSDHC product line executing the SPYRUS Cryptographic Operating System (SPYCOS®). Additional SPYRUS products include TrustedFlash® for secure storage, Rosetta Secure Boot that can be configured to boot a Linux or Windows 10 IoT Core, Rosetta USB and USB 3.0 Windows To Go, Linux2Go™ and PocketVault P-3X encrypted storage devices containing the SPYCOS HSM for authentication and/or encryption using the disaggregated shared secrets. All SPYRUS HSM devices include SPYCOS® with support for ECDSA and RSA digital signatures, hashing, key management, and patented zero knowledge secret sharing technology.
Related Links
SPYRUS IoT Developers' Portal: https://developer.spyrus.com/
SPYRUS Windows to Go Drives: http://www.spyrus.com/windows-to-go-live-drives/;
NcryptNshare applications: http://www.spyrus.com/ncryptnshare/
Booting on a SPYRUS WorkSafe Pro: https://youtu.be/fEfSvmvTvNk
DualBoot Options Pro: https://youtu.be/K2EEo82lLNE
SPYRUS Enterprise Management featuring SEMS Hardware Policy: https://youtu.be/Ia4E5L3sO0
About SPYRUS, Inc.
SPYRUS delivers innovative security solutions that offer the strongest protection for data in motion, data at rest and data at work. For over 20 years, SPYRUS has delivered leading hardware-based encryption, authentication, and digital content security products to government, financial, and health care enterprises. To prevent the insertion of untrusted components, patented Secured by SPYRUS security technology is proudly designed, engineered, and manufactured in the USA to meet FIPS 140-2 Level 3 standards. SPYRUS has collaborated closely with Microsoft to deliver the first certified hardware encrypted portable platform for Windows 7, Windows 8, Window 8.1 and now Windows 10. SPYRUS is headquartered in San Jose, California. See www.spyrus.com for more information.
© 2017 SPYRUS, Inc., All rights reserved.
SPYRUS, the SPYRUS logo, Linux2Go, Rosetta, Rosetta Micro, SPYCOS, KeyWitness, Suite B On Board are either registered trademarks or trademarks of SPYRUS, Inc., in the U.S. and/or other jurisdictions. All other company, organization, and product names are trademarks of their respective owners. All other trademarks are the property of their respective owners.