April 19, 2009 9:01 PM PDT

Forget your password? Use your phone

by Elinor Mills
  • Font size
  • Print
  • 2 comments

FireID was set to announce at RSA 2009 on Monday technology that allows people to access multiple Web sites on their mobile phone without having to remember all the passwords.

The FireID universal personal authenticator app turns any phone that runs Java into a one-time password generator and generates the password directly on the phone instantly so there is no risk of it being intercepted and no waiting for an SMS like with other password-generator systems, said Jenny Dugmore, chief executive of FireID.

The system also works with multiple applications and creates a unique encrypted password for each session. It identifies the app and the make and model of the phone and downloads a version of FireID that is specific for that phone rather than a generic version.

The only password the user needs to remember is the one to access the FireID app.

FireID runs on any phone that can run a Java app, and the technology is compliant with the open authentication standard so organizations using key fobs can use it too, Dugmore said.

There is a Blackberry version of the FireID app. Apple is testing it on its iPhone and FireID is in talks with Google, said Dugmore.

Elinor Mills covers Internet security and privacy. She joined CNET News in 2005 after working as a foreign correspondent for Reuters in Portugal and writing for The Industry Standard, the IDG News Service, and the Associated Press. E-mail Elinor.
Topics:

Privacy & data protection,

Vulnerabilities & attacks

Tags:

FireID,

mobile phone,

password generator,

RSA 2009

Share:
Digg
Del.icio.us
Reddit
Recent posts from Security
Q&A: Researcher Karsten Nohl on mobile eavesdropping
RockYou sued over data breach
Hacker Gonzalez pleads guilty in Heartland breach
Microsoft rebuts IIS vulnerability claims
More attacks expected on Facebook, Twitter in 2010
GSM crypto code cracked, engineer says
Web-based Lookout protects mobile devices, data
Hackers claim to crack Kindle copyright armor
Related
First Mobile Firefox enters home stretch
Youth using phones to harass and spy on partners
Post-Christmas Wireless-N routers explained
Using Facebook and Twitter safely
Buzz Out Loud Podcast 1123: Honey, what's this charge for penetration testing?
Tivit streams Mobile DTV to your iPhone, BlackBerry, and PC
EyeTV 3.3 conquers 3G iPhone video streaming
The five most welcome digital audio products of 2009
Add a Comment (Log in or register)
by nedy68 April 20, 2009 1:04 AM PDT
THANKS
Reply to this comment
by anja98 April 22, 2009 3:03 AM PDT
sounds cool.... so instead of using OTP tokens, you use your mobile phones. It would be very interesting to see how the external websites are going to get linked up for the OTP.
Reply to this comment
advertisement

15 sites that went kaput in 2009

Web sites launch all the time, but they also shut their doors. We highlight 15 that bit the dust this year.

Top 10 news stories of the decade

Let the debate begin: Was the iPhone more important than iTunes? Was anything bigger than Google finding a great business model? CNET offers its list of the 10 most important stories of the '00s.

About Security

Online security is threatened by more than hacking and phishing attempts. Check here for the latest updates on software vulnerabilities, data leaks, and rapidly spreading viruses--and learn how to protect your systems.

Add this feed to your online news reader

Security topics

advertisement
advertisement

Inside CNET News

Scroll Left Scroll Right
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
CES 2010
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET