About

What is SAASPASS?

SAASPASS is your key to the world. By providing a comprehensive and frictionless solution fully-secured with dynamic passcodes and multi-factor authentication, SAASPASS is the only identity and access management tool you need to secure your corporate network or your own personal data. Whether logging into your work emails and company apps, accessing your personal online bank account, making purchases at online retailers, browsing social media, or even unlocking the door of your car, home, or hotel room, SAASPASS allows you to use your mobile or other enabled device to manage all your digital and physical access needs securely and conveniently.

SAASPASS allows you to do with one product what it currently takes a combination of 4 to 5 other products to do.

Why do I need SAASPASS?

The likelihood of being targeted by hackers is increasing dramatically. As software and data move to the Cloud, and the line between work and personal space is blurred, it is no longer possible to simply build security perimeters around corporate networks. People are working from home, using their own devices for work, and then using those same devices for social media and other less secure communications and transmissions. Also, the increased use of outsourced services and temporary contractors requires more complex ways of providing and restricting access to networks, so a traditional one-size-fits-all approach to authentication opens backdoors and weak links. On top of all this, viruses designed for broad attacks on everybody are being succeeded by malware customized to target specific companies or individuals. The barriers-to-entry and costs for hackers have fallen precipitously and the nature of the threat is changing.

Simultaneously, the same technologies and developments that have combined to make hacking easier, have also increased the potency and impact of those hacks. More and more personal and corporate data is available online to be accessed and stolen. Financial transactions can be diverted with ease. Each day, new connected devices are being created that we will rely on to manage our health, our finances, and many important aspects of our lives. We are increasingly reliant on systems of all kinds that can be hijacked, leaving individuals and organizations more vulnerable to attack than ever.

Effectively responding to this increased threat is possible, but has come with its own headaches. Whether you’re simply an individual who regularly uses email, or you’re an admin responsible for cybersecurity at a large organization, you’ve probably experienced a frustrating choice: Have security that gets in the way or risk getting hacked? In practice, this has meant carrying around fobs or tokens or ID cards, possibly more than one, memorizing numerous complex passwords, then having to change them, and so on. Some have tried cobbling together different solutions (a password manager, a single sign-on solution, an MFA key fob, and so forth), spending substantial sums of money and hassle on a fragmented solution in an effort to manage risk. Others, however, simply give up and circumvent security methods, misunderstanding the risks by calculating that the inconvenience of using these methods outweighs the risks of not using them. They use the same password for multiple apps, or write complex passwords on post-it notes. They leave security tokens inserted in their computer. All it takes is one weak link in the chain, one impatient or exhausted employee, to leave your organization vulnerable to attack. When security becomes too inconvenient to use, it is the same as having no security.

SAASPASS is the only full-stack identity and access management solution. With a single product, it allows you to use your mobile phone or other enabled device to manage all your digital and physical access needs securely and conveniently. Without this convenience, you aren’t truly secure.

How does SAASPASS work?

Multi-factor authentication (2FA and MFA) with dynamic passwords.

Multi-factor authentication (MFA) has recently become a popular buzzword in cybersecurity, because of its ability to drastically reduce the risk of hacks. However, both the ease-of-use and the level of security provided by different MFA solutions vary widely across the spectrum. Sending and receiving dynamic passcodes by SMS, for example, as some MFA solutions do, should hardly be classified as MFA, as the message is highly vulnerable to interception in man-in-the-middle attacks. Also, passwords should be dynamic, so that even if acquired, they cannot be reused or sold. Only out-of-band MFA solutions with dynamic passwords, such as SAASPASS, offer the high levels of security associated with MFA.

As for convenience, typical MFA solutions require anywhere from 4 to 6 steps in order to securely sign in. SAASPASS can do the same in just a single step, with just a touch of a biometric sensor. SAASPASS provides strong and frictionless MFA through its mobile app and on a number of mobile platforms that include iPhones, iPads and Androids among others. The random number generated through the mobile app can be used to authenticate to any website, service, or device through either our Authenticator format or through custom integration using our RESTful APIs.

Single sign-on

Single sign-on products are often used by organizations to secure links to cloud-based apps using a SAML or other protocol, eliminating the need for passwords. SAASPASS’s single sign-on console operates basically like a bookmarks folder for all your corporate applications, allowing you to sign-in and authenticate to anything securely with a click of the mouse.

App authentication

SAASPASS offers the same convenience as logging in to apps with Facebook or Twitter, but with the added security of dynamic passwords.

“So-called ‘overlay malware,’ which impersonates other apps' login screens, is becoming increasingly prevalent.” -- Fast Company
http://www.fastcompany.com/3062867/overlay-malware-google-adsense
Endpoint access management

Secure endpoint access management, which basically involves putting MFA on physical stuff, typically requires extra hardware such as smart card readers and usb key fobs. These must be purchased, managed, replaced, tracked, and cannot easily be deactivated if they fall into the wrong hands. SAASPASS does the same thing with no additional hardware, in a fully cross-platform manner encompassing Windows and Linux.

Password management

While single sign-on products are often used by organizations to secure links to cloud-based apps using a SAML protocol, eliminating the need for passwords, password management products typically just store and populate usernames and passwords into a browser. These are often used by individuals, rather than enterprises, as they are more about convenience than security. SAASPASS is able to integrate a 2FA security layer into its password management flow, providing the same level of convenience as other password managers, but with added security.

IoT and Physical Access Control Systems (PACS) authentication

As the quality of IoT devices becomes increasingly associated with security, having superior features or a more aesthetic design for your product are no longer adequate competitive advantages. Security must also be a primary concern. Many IoT devices that claim to be secure are only encompassing the security of encryption, and almost 100% of IoT devices still rely on static credentials. Building SAASPASS into your device allows users to authenticate to the device using dynamic passwords (always changing), even when those devices are offline (i.e. during a power outage or an earthquake). In fact, our superior design gives us offline capabilities that are unique to SAASPASS, and these are particularly important to securing IoT devices. Build SAASPASS into your device using our RESTful APIs.

“75 Percent of Bluetooth Smart Locks Can Be Hacked” -- Tom’s Guide
http://www.tomsguide.com/us/bluetooth-lock-hacks-defcon2016,news-23129.html
“A New Wireless Hack Can Unlock 100 Million Volkswagens” -- Wired
https://www.wired.com/2016/08/oh-good-new-hack-can-unlock-100-million-volkswagens/

How is SAASPASS unique and superior?

In the marketplace of identity and access management solutions, enterprises often cobble together two or more solutions in order to meet their needs, for example, pairing a single sign-on product with an MFA hard token. There are obviously extra resources involved with managing multiple solutions from different vendors, but just as important are the inevitable cracks and seams resulting from relying on a patchwork of products. Some of these fragmented solutions are less secure; others are simply less convenient.

SAASPASS is truly unique in that it is the only full-stack identity and access management solution. In general, IAM products can be categorized into seven groups listed in the table below. A few of the solutions on the market are a hybrid of one or two of these categories. SAASPASS, however, is in a category of its own, offering the full-stack of IAM solutions in a single product. Translation: SAASPASS offers seamless security and greater convenience for less time and cost to you and your organization.