ABOUT

What is SAASPASS?



SAASPASS is your key to the world. By providing a comprehensive and frictionless solution fully-secured with dynamic passcodes and multi-factor authentication, SAASPASS is the only identity and access management tool you need to secure your corporate network or your own personal data. Whether logging into your work emails and company apps, accessing your personal online bank account, making purchases at online retailers, browsing social media, or even unlocking the door of your car, home, or hotel room, SAASPASS allows you to use your mobile or other enabled device to manage all your digital and physical access needs securely and conveniently.

SAASPASS allows you to do with one product what it currently takes a combination of 4 to 5 other products to do.
SAASPASS allows you to do with one product what it currently takes a combination of 4 to 5 other products to do.

Why do I need SAASPASS?



The likelihood of being targeted by hackers is increasing dramatically. As software and data move to the Cloud, and the line between work and personal space is blurred, it is no longer possible to simply build security perimeters around corporate networks. People are working from home, using their own devices for work, and then using those same devices for social media and other less secure communications and transmissions. Also, the increased use of outsourced services and temporary contractors requires more complex ways of providing and restricting access to networks, so a traditional one-size-fits-all approach to authentication opens backdoors and weak links. On top of all this, viruses designed for broad attacks on everybody are being succeeded by malware customized to target specific companies or individuals. The barriers-to-entry and costs for hackers have fallen precipitously and the nature of the threat is changing.

Simultaneously, the same technologies and developments that have combined to make hacking easier, have also increased the potency and impact of those hacks. More and more personal and corporate data is available online to be accessed and stolen. Financial transactions can be diverted with ease. Each day, new connected devices are being created that we will rely on to manage our health, our finances, and many important aspects of our lives. We are increasingly reliant on systems of all kinds that can be hijacked, leaving individuals and organizations more vulnerable to attack than ever.

Effectively responding to this increased threat is possible, but has come with its own headaches. Whether you’re simply an individual who regularly uses email, or you’re an admin responsible for cybersecurity at a large organization, you’ve probably experienced a frustrating choice: Have security that gets in the way or risk getting hacked? In practice, this has meant carrying around fobs or tokens or ID cards, possibly more than one, memorizing numerous complex passwords, then having to change them, and so on. Some have tried cobbling together different solutions (a password manager, a single sign-on solution, an MFA key fob, and so forth), spending substantial sums of money and hassle on a fragmented solution in an effort to manage risk. Others, however, simply give up and circumvent security methods, misunderstanding the risks by calculating that the inconvenience of using these methods outweighs the risks of not using them. They use the same password for multiple apps, or write complex passwords on post-it notes. They leave security tokens inserted in their computer. All it takes is one weak link in the chain, one impatient or exhausted employee, to leave your organization vulnerable to attack. When security becomes too inconvenient to use, it is the same as having no security.

SAASPASS is the only full-stack identity and access management solution. With a single product, it allows you to use your mobile phone or other enabled device to manage all your digital and physical access needs securely and conveniently. Without this convenience, you aren’t truly secure.

How does SAASPASS work?



Multi-factor authentication (2FA and MFA) with dynamic passwords.

Multi-factor authentication (MFA) has recently become a popular buzzword in cybersecurity, because of its ability to drastically reduce the risk of hacks. However, both the ease-of-use and the level of security provided by different MFA solutions vary widely across the spectrum. Sending and receiving dynamic passcodes by SMS, for example, as some MFA solutions do, should hardly be classified as MFA, as the message is highly vulnerable to interception in man-in-the-middle attacks. Also, passwords should be dynamic, so that even if acquired, they cannot be reused or sold. Only out-of-band MFA solutions with dynamic passwords, such as SAASPASS, offer the high levels of security associated with MFA.

As for convenience, typical MFA solutions require anywhere from 4 to 6 steps in order to securely sign in. SAASPASS can do the same in just a single step, with just a touch of a biometric sensor. SAASPASS provides strong and frictionless MFA through its mobile app and on a number of mobile platforms that include iPhones, iPads and Androids among others. The random number generated through the mobile app can be used to authenticate to any website, service, or device through either our Authenticator format or through custom integration using our RESTful APIs.

Single sign-on

Single sign-on products are often used by organizations to secure links to cloud-based apps using a SAML or other protocol, eliminating the need for passwords. SAASPASS’s single sign-on console operates basically like a bookmarks folder for all your corporate applications, allowing you to sign-in and authenticate to anything securely with a click of the mouse.

App authentication

SAASPASS offers the same convenience as logging in to apps with Facebook or Twitter, but with the added security of dynamic passwords.



“So-called ‘overlay malware,’ which impersonates other apps' login screens, is becoming increasingly prevalent.” -- Fast Company


http://www.fastcompany.com/3062867/overlay-malware-google-adsense



Endpoint access management

Secure endpoint access management, which basically involves putting MFA on physical stuff, typically requires extra hardware such as smart card readers and usb key fobs. These must be purchased, managed, replaced, tracked, and cannot easily be deactivated if they fall into the wrong hands. SAASPASS does the same thing with no additional hardware, in a fully cross-platform manner encompassing Macs, Windows, and Linux.

Password management

While single sign-on products are often used by organizations to secure links to cloud-based apps using a SAML protocol, eliminating the need for passwords, password management products typically just store and populate usernames and passwords into a browser. These are often used by individuals, rather than enterprises, as they are more about convenience than security. SAASPASS is able to integrate a 2FA security layer into its password management flow, providing the same level of convenience as other password managers, but with added security.

IoT and Physical Access Control Systems (PACS) authentication

As the quality of IoT devices becomes increasingly associated with security, having superior features or a more aesthetic design for your product are no longer adequate competitive advantages. Security must also be a primary concern. Many IoT devices that claim to be secure are only encompassing the security of encryption, and almost 100% of IoT devices still rely on static credentials. Building SAASPASS into your device allows users to authenticate to the device using dynamic passwords (always changing), even when those devices are offline (i.e. during a power outage or an earthquake). In fact, our superior design gives us offline capabilities that are unique to SAASPASS, and these are particularly important to securing IoT devices. Build SAASPASS into your device using our RESTful APIs.



“75 Percent of Bluetooth Smart Locks Can Be Hacked” -- Tom’s Guide

http://www.tomsguide.com/us/bluetooth-lock-hacks-defcon2016,news-23129.html


“A New Wireless Hack Can Unlock 100 Million Volkswagens” -- Wired

https://www.wired.com/2016/08/oh-good-new-hack-can-unlock-100-million-volkswagens/



How is SAASPASS unique and superior?



In the marketplace of identity and access management solutions, enterprises often cobble together two or more solutions in order to meet their needs, for example, pairing a single sign-on product with an MFA hard token. There are obviously extra resources involved with managing multiple solutions from different vendors, but just as important are the inevitable cracks and seams resulting from relying on a patchwork of products. Some of these fragmented solutions are less secure; others are simply less convenient.

SAASPASS is truly unique in that it is the only full-stack identity and access management solution. In general, IAM products can be categorized into seven groups listed in the table below. A few of the solutions on the market are a hybrid of one or two of these categories. SAASPASS, however, is in a category of its own, offering the full-stack of IAM solutions in a single product. Translation: SAASPASS offers seamless security and greater convenience for less time and cost to you and your organization.

The Marketplace of Identity and Access Management (IAM) Solutions

IAM Category

Description

Orientation

Strengths

Weaknesses

Soft tokens

Authenticator software used to authenticate to computers

Individuals

MFA security layer

No hardware costs

No hardware risks

Must be paired for complete IAM solution

Hard tokens

Hardware tokens (usb, keychain fobs, etc) used to authenticate to computers

Enterprise

MFA security layer

Must be paired for complete IAM solution

Limited applicability

Hardware costs

Hardware risks

Password managers

Software that stores and populates passwords to browser

Individuals

Remembers passwords

Must be paired for complete IAM solution

Weak security because passwords are stored

App authenticators

Stored ID credentials used to authenticate to apps (i.e. using Facebook or Twitter to sign in to an app)

Individuals

Convenience

Must be paired for

complete IAM solution

Limited applicability

Single sign-ons

Software that replaces passwords with SAML or other secure link to select corporate apps  

Enterprise

Eliminates passwords for select apps

Must be paired for complete IAM solution

Limited applicability (SAML apps, etc)

Typically not available for individuals

PACS

Physical Access Control System--Hardware used for authenticating to physical entry and exit points (ID cards, key fobs, etc)

Enterprise

Controls physical access points and IoT devices

Must be paired for complete IAM solution

Typically uses static credentials, not dynamic MFA, so weak security

Hardware costs

Hardware risks

Specialists

Typically a hybrid of other IAM categories, but geared toward a specific industry (i.e. healthcare)

Enterprise

Same as other relevant categories used

Industry expertise

Same as other relevant categories used

Must be paired for complete IAM solution

Limited applicability (specialized industry)

Typically not available for individuals

Full-Stack IAM

Cloud-based software providing the full-stack of identity and access management tools:

MFA with dynamic passwords

Single sign-on

App authentication

Endpoint access management

Password management

IoT and Physical Access Control System (PACS) authentication

Individuals/Enterprise

Seamless all-in-one solution adds convenience and frictionless experience

MFA security at each access point

Remote login for PCs and Macs

Remembers passwords

Eliminates passwords for corporate apps

No hardware costs

No hardware risks

Controls physical access points and IoT devices with strong security

Individual-oriented enterprise solution results in greater security and versatility

---

By providing a comprehensive and frictionless solution fully-secured with dynamic passwords and multifactor authentication, SAASPASS is the only identity and access management tool you need to secure your corporate network or your own personal data. However, its advantage is not simply in its range. SAASPASS has engineered each of its features to be independently second to none. Using out-of-band MFA with dynamic passwords, SAASPASS enables you to securely authenticate and login to your Mac or PC from your mobile phone or wearable device. Login securely using whichever method is most convenient for you:

  • Barcode scan
  • Remote login
  • Proximity login (offline capabilities)
  • Manual login (offline capabilities)

Other IAM products are typically designed for enterprise, while some are geared towards individuals. These two approaches are often viewed as separate or incompatible, the result being that individuals are frequently forced to use a different solution to secure their personal data at home as they do at work. SAASPASS takes a very different approach to identity and access management with its individual-oriented enterprise solution. SAASPASS understands that for an organization to be truly protected, its security perimeter must be extended to protect its employees, suppliers, and subcontractors--anyone with access to the corporate network. A password breach of an employee using Facebook, for example, on his or her personal computer in an airport or at a Starbucks, can provide just enough information for a hacker to gain access to that employee’s corporate network. SAASPASS extends the security perimeter without compromising the individual’s privacy. The SAASPASS ID serves as a key to the network, but it is owned by the individual, not the enterprise. When an employee changes jobs, he or she doesn’t get a new bank account or a new driver’s license, and yet, most likely both are required to operate as an employee. Employers don’t own an employee’s identity, and yet they are vulnerable if that employee’s identity is compromised. Personal and enterprise security are inextricably linked. Unlike other IAM products, SAASPASS has crafted its solution with this important reality in mind.

SAASPASS also distinguishes itself from others because of its unrelenting attitude towards passwords. Other products, particularly password managers and app authenticators, and even many single sign-on solutions, seem content to help users manage passwords or facilitate their use. SAASPASS does not accept the status quo and strives to replace passwords wherever and whenever possible. By continuously expanding our list of secure links to apps, SAASPASS will not stop until passwords are eradicated. Leave your mother’s maiden name and childhood pet back in the 20th century where they belong! It’s time to commit pass-ticide. Move beyond passwords with the only full-stack identity and access management solution:

  • Replace hard tokens or repurpose existing tokens by integrating with SAASPASS
  • Replace ID cards, single sign-on products, and password managers with a single, easy-to-use solution
  • Secure every access point to your corporate network, personal data, physical door, or IoT device using out-of-band MFA with dynamic passcodes
  • Login to your Mac or PC instantly, with full MFA, even when offline
  • Authenticate to cloud-based and on-premise apps securely and seamlessly
  • Eliminate password breaches and their impact on you or your organization
  • Eliminate the costs and risks of purchasing and managing security tokens and hardware
  • Eliminate the manual typing of passwords and the resources involved with password complexity rules and resets
  • Minimize admin resources by streamlining the provisioning and deprovisioning of employees and temporary partners to your active directory and corporate apps
  • Control and instantaneously manage network access by employees and partners




What devices does SAASPASS support?



SAASPASS works seamlessly on iPhones, Android phones, Blackberrys, Windows Phones and feature Java ME phones. Over 350 Java MIDP2 enabled mobile phones have been tested and certified through our extensive internal quality assurance process, and we constantly test and certify new models as they become available. Users are authenticated through a phone application available for iPhones, Android phones, Windows phones, Blackberrys and Java ME feature devices.

The product works basically like a traditional lock and key system, where your “key” is your mobile phone or other SAASPASS-enabled device, and the “lock” can be a computer, a smart lock on your car or home, an IoT device, and so forth.

THE KEY:
SAASPASS can be installed and/or cloned onto any device that supports:

  • iOS (iPhone, iPad, Apple Watch, etc)
  • Android (Android phones, Android tablets, Android Wear Watches, Kindle Fire, or other Android devices)
  • BlackBerry
  • Feature Phones (any device that supports J2ME)
  • Tokens (key fobs, etc)
THE LOCK:
SAASPASS can be used to secure and authenticate to any device that supports:

  • Windows
  • Mac OSX/OS
  • Linux
  • Custom IoT OS, using our API (i.e. smart locks)

Who is SAASPASS?




THE SAASPASS STORY

The SAASPASS story begins in 2013. Fatih was working in finance as a fund manager, and his older brother Sal was running a custom security software and consulting firm. Complaining to Sal about the number of fobs and security devices he was required to carry around in his pocket for his job, Fatih wondered why there was not a more convenient way of securing data. Sal agreed and added that although a number of products existed to deal with specific security needs, no comprehensive solution existed, and no one had succeeded in developing a solution that was both secure and convenient. Immediately, Sal and Fatih knew what they had to do, and that together they had the unique experience to create such a solution.

Wilbur and Orville Wright weren’t the first to create an airplane. They were just the first to create an airplane that would fly. And just like their iconic fraternal predecessors, Sal and Fatih rolled up their sleeves and began tinkering, ignoring conventional designs, and determined to design a superior security solution that was actually frictionless. Sal wound down his business, Fatih quit his job, and the two dove in. Sure enough, after countless prototypes and betas, and exhaustive testing--just like that morning in Kitty Hawk--the moment finally arrived when these brothers knew they had succeeded. SAASPASS was born.

Howard A. Schmidt

Chairman of the Board


Oliver Ring

Selahaddin

Fatih

Omer

David Price

The Brothers Karamazovtas





BOARD OF DIRECTORS


Howard Schmidt, Chairman

Howard Schmidt was the Cybersecurity Advisor to Presidents George W. Bush and Barack Obama. He also served as the Chief Security Officer for Microsoft Corporation and eBay.

White House Bio

Wikipedia page




Oliver Ring

An attorney by training, Oliver Ring built a successful career in banking, becoming the Global Head of Structuring at Credit Suisse.




David Price

A graduate of the University of Cambridge and the London School of Economics, David Price worked for more than decade in healthcare and TMT-focused private equity transactions. He currently serves as an Executive Director of Clarity Informatics, a UK-based Health Informatics company, and is a founding director of Principal Global Solutions, a London-based private commercial consultancy for some of the world's most affluent individuals and their companies.




MANAGEMENT TEAM


Selahaddin Karatas, CEO and co-founder

A graduate of Wesleyan University, Sal’s career in tech actually began to take shape in the early 80s, when his childhood toys included the Apple II Plus, Sinclair ZX81, ZX Spectrum, Commodore 64 and, of course, the Atari. By the early 1990s, when mobile telephony was in its infancy, he was heading product development at a leading European telecommunications company, Sonera (now TeliaSonera), helping pioneer and implement mobile innovations. Still in an era when apps were basically unknown, he then founded a consultancy for mobile application development. The accumulation of all this experience and knowledge led to the creation of SAASPASS--the fulfillment of Sal’s vision for strong, easy-to-use authentication security.




Fatih Karatas, CFO and co-founder

After following his older brother Selahaddin to Wesleyan University, Fatih joined the financial sector in New York City, then successfully managed a multi-billion dollar fund with UBS in Zurich, the only billion-dollar-plus diversified fund from any bank worldwide to generate positive returns in the 2008 crisis. This caught the attention of a major family office, who hired him in 2009 to help manage their global investment portfolio. In mid-2013, once again testing his acute talent for identifying opportunities and picking winners, Fatih joined forces with his brother to develop and lay the groundwork for SAASPASS.




Omer Karatas, VP of Sales and co-founder

Omer studied history before completing his Masters in Asian Studies and International Relations. He also speaks Mandarin. Selahaddin and Fatih knew they would need other competent and intelligent individuals on the team, particularly those who brought different skills and perspective to the table than their own. Omer was their natural choice to round out and complete the SAASPASS team. He was drafted, and willingly accepted.