ITPRO

Printed from www.itpro.co.uk

Register to receive our regular email newsletter at http://www.itpro.co.uk/registration.

The newsletter contains links to our latest IT news, product reviews, features and how-to guides, plus special offers and competitions.

Skip to navigation

    John Lewis checks out mobiles for remote security

The High Street retailer is taking on two-factor authentication software that turns its employees' mobile phones into virtual security tokens.

By Miya Knights, 3 Mar 2008 at 14:43

John Lewis today announced a deal to implement remote secure authentication procedures using employees' mobile phones.

The High Street retailer will use new security software integrated to its Microsoft Active Directory authorisation system to enable its 15,000 UK staff to use their mobile phones as part of two-factor authentication steps to access corporate IT systems.

The system for remote authentication using mobile phones, from provider, SecurEnvoy, will replace John Lewis' existing separate token-based, two-factor system. And the transition is aimed at reducing deployment costs with cheaper user licences compared to purchasing, replacing and distributing tokens, as well as removing the need for extensive re-training.

Matthew Clements, principal programmer for the John Lewis Partnership, said the company had been using traditional, token-based authentication with its remote access systems since the late 1990s.

"However, after reviewing the capital, revenue and administration costs associated with the existing system we decided to look for a cheaper alternative and found SecurEnvoy's token less approach to be a far superior and cost-effective solution," he said.

Instead of using tokens or smartcards, the SecurAccess system sends a pass code to users' mobile phones. When users want to log on to the corporate system, they enter their Microsoft User ID and password and then a pass code that has been pre-enabled on their mobile phone. Once the pass code has been used, it is superseded with a new one sent to the phone.

SecurAccess said this pre-loading function eliminates the need to install any software on to the mobile device. Furthermore, it provides users with access to their pass code as soon as they needed it rather than having to wait for an SMS to be delivered, as is the case in some other two-factor mobile authentication systems.

Email to a friend

Print this page

Social Bookmark this article: What is this?

Add to: DiggDigg
Add to: Del.icio.usDelicious
Add to: RedditReddit
Add to: StumbleUponStumbleUpon
Add to: SlashdotSlashdot
Add to: GoogleGoogle
Add to: FacebbokFacebook

Be the first to comment on this article

You need to Login or Register to comment.

advertisement

    Latest Internet Features

The continued curse of cybersquatting

For some, it’s a problem confined to the early days of the Internet. But current figures suggest that the cybersquatting problem is, if anything, growing.

Read more

 

More Internet Features

    Latest Internet Reviews

eSoft ThreatWall 250

EXCLUSIVE - eSoft ThreatWall 250

Rating: 5

eSoft may be a relative newcomer to the UK content security market but competitors would be well advised to keep a close eye on it.

Read more

 

More Internet Reviews

advertisement

    Latest News Videos in Internet

Easynet

Video: Q&A with Easynet Connect's Chris Stening

Play Video: Q&A with Easynet Connect's Chris Stening   Play

IT PRO spoke to Chris Stening, managing director of Easynet’s SME division, about whether ISPs are giving businesses the service they deserve.

 

    Blogs

Ofcom publishes broadband speeds report

Read more

 

    White papers

Want more background on today's hottest IT trends?

Visit IT PRO's white paper library for more on virtualisation, encryption and other topics.

    Register for IT PRO

You'll get exclusive member benefits including free white papers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.

Register
Advertisement