BioPassword Enterprise Edition utilizes a two-step authentication process. Users log in with their name and password; additionally, their typing rhythm is captured and matched against a previously created and stored biometric template of that user's typing habits -- the biometric processing engine at the heart of the software determines if the person trying to log in is a valid user or not.


BioPassword authentication architecture
The company says its authentication process involves the following procedure:

• User types a user name and password at his/her workstation
  
• BioPassword Client collects and sends the individual's typing sample in addition to the standard Windows logon process
  
• User is authenticated as an authorized user
  
• Windows Events are generated to enable audit trails, monitor authentication activity, and facilitate regulatory compliance
  

According to Jared Pfost, vice president of security and product strategy at BioPassword, this process of authenticating users, rather than devices, results in "the easiest-to-use and most cost-effective multi-factor authentication solution on the market, at less than one-third the cost of competing hardware token-based solutions." Additionally, user authentication results in a "Windows Event" that facilitates authentication monitoring and audit trails.

Enterprise Edition 3.0 adds a new knowledge-based authentication (KBA) factor, which Pfost says increases security "without the worry of denying access to legitimate users." With this new feature, credentials will be evaluated based on keystroke biometrics first and, if there is doubt about the legitimacy of the user, a KBA challenge question can be dynamically issued.

According to Eric Ogren, security analyst at the Enterprise Strategy Group, "A biometric approach based on a person's typing cadence coupled with a knowledge-based architecture can greatly enhance the security of passwords without requiring the overhead of additional hardware or software authentication infrastructures. Organizations can reduce the risk of fraudulent sign-ons to their networks and business applications."

Enterprise Edition 3.0 also adds protection for remote access authentication scenarios through compatibility with Outlook Web Access (OWA), support for Windows XP Embedded thin clients and "leading server-based computing environments," and expanded language support.

BioPassword Enterprise Edition 3.0 is immediately available. Pricing was not disclosed.

---

Related stories:

• "Stand-alone" security app protects Windows Mobile devices
  
• Fingerprints are no longer only skin deep
  
• Finger, face recognition dev kits support Windows CE
  
• Mobile imaging platform automatically sends photos to PCs
  
• Cellphones learn to recognize their owners
  
• Face-recognition security comes to mobile phones
  
• Securing VoIP Devices
  
• Primer on elliptical curve cryptography
  
• Security features in Windows CE
  
• Biometric API supports Windows CE
  
• UMPC features built-in GPS, fingerprint reader
  
• Via C7 security engine supports Microsoft CryptoAPI
  
• Chip offloads WiFi security, encryption
  
• Handheld biometrics reader runs Windows CE 5.0
  
• Fingerprint component downloadable for Windows XP Embedded
  
• Biometric program interface ported to Windows CE
  
• "World's smallest" fingerprint sensor supports Windows Mobile