IronKey announced that its Trusted Access for Banking product can allow banks to protect their commercial banking customers from the potential risk from allegedly compromised RSA SecurID authentication tokens.
IronKey says that Trusted Access for Banking allows banks to continue using their existing SecurID deployments and banking applications without concern. It is designed to isolate online banking users from advanced persistent threat (APT) attacks using toolkits such as ZeuS and SpyEye rather than trying to detect them.
With IronKey Trusted Access for Banking, users connect their Trusted Access USB device to their computer to automatically launch a protected, virtualized online banking environment. The Trusted Access Browser starts at the bank’s home page and restricts users to only navigate to bank-authorized web sites.
IronKey Trusted Access addresses likely attacks such as man-in-browser attack, key logging, network monitoring, and DNS tampering. A secure, encrypted connection to online banking is made through the IronKey Trusted Network to lock out man-in-the-middle and DNS attacks. Advanced encrypted keyboard input protects users from key loggers that can steal user names and passwords.