Marcin Szary, CTO
As online wallets and cryptocurrencies continue to gain ground in traditional banking institutions, organizations today demand quick and frictionless financial interactions coupled with effective security against cyber attacks. To protect its employees, and applications against known and unknown cyber attacks, an organization’s software security requires good hygiene and constant diligence. The adoption of two-factor authentication (2FA) plays a vital role in this regard, shielding applications and user accounts against impending cyber attacks. However, not all 2FA methods are built to work equally well. While hackers and cybercriminals are constantly finding new ways to perform a successful cyberattack, some 2FA standards are less secure than the others. Text based one-time-passwords, for example, have already been compromised in the past. What the organizations really need is a way to easily adopt new security standards without a necessity of rebuilding their applications, and adding more complicated security policies. This is where Secfense steps in.
Guided by a mission to redefine 2FA adoption within organizations, Secfense—a European user access security broker—sets the new default for enabling all possible 2FA methods on a multitude of enterprise web applications. Secfense transparently implements a scalable security layer in the fabric of organizations’ infrastructures for reliable protection spanning on-premise, public, and private cloud, without interfering with the applications’ code or database. The company minimizes the complexities of fragmented traditional 2FA deployment that requires developer teams to redesign individual applications for enabling a particular 2FA method with a quick and simplified deployment process.
“Think about virtualization. The abstraction implemented in between the hardware and the higher layers of software has changed the IT world irreversibly. Secfense has followed the same course. We shift 2FA from the world of software to the world of a flexible infrastructure,” states Marcin Szary, CTO of Secfense.
Secfense deploys a reverse proxy between enterprise applications and the end users, which inspects and learns the authentication-related traffic flow and patterns to enforce sensitive multi-factor authentication log-on actions. A pattern recognition module embedded in the Secfence security layer compares the traffic patterns to a list of criteria and reroutes a matching pattern to an internal processor. The internal processor then activates the organizations’ 2FA method of choice. “Secfense is a method-agnostic security layer that protects organizations and its applications from cyber attacks with maximum flexibility and scalability,” says Antoni Sikora, CMO and Head of Growth at Secfense.
Secfense is on par with the digital realm’s shift from software development to networks and infrastructures by helping big and medium size companies from financial, healthcare, e-commerce, transportation, and other professional services companies fend off data theft and phishing attacks.
Secfense user access security broker proves to be especially useful for the banking sector (making it possible to easily comply with PSD2 directive) and the healthcare sector (and compliance with HIPAA directive password requirements).
The most recent developments in Secfense are so-called ‘microauthorizations’. This new functionality makes it possible to stop the user when he or she reaches for specific resources or wants to perform some actions in the protected application.
Positioned as an independent user access security broker and a 2FA enabler in the European market, Secfense is on the constant lookout for events to present its technology. “We strive to be the go-to company for businesses that want to easily unify and strengthen their user access security policies across the globe,” Szary concludes.