Intrinsic ID's BroadKey Delivers Hardware Root-of-Trust Security at Core of Authentico's New Password Security System

SUNNYVALE, Calif., April 8, 2019 – Intrinsic ID, the world’s leading provider of digital authentication technology for Internet of Things security, today announced Authentico Technologies incorporated hardware root-of-trust security provided by Intrinsic ID’s BroadKey software in Authentico’s new patented system for secure password storage and key management. Authentico’s product, CIPHRA, is a hardware device that makes password theft essentially impossible even if a database is stolen. Passwords and other sensitive data are protected because with BroadKey no root keys are stored.

Using a BroadKey-generated hardware root of trust, Authentico developed a centralized hardware unit that can be installed on an enterprise’s servers. The device works as a plug-and-play product and, once running, it enhances security without any noticeable change in the user experience or login process.

“Our approach, utilizing the ability of BroadKey to generate strong unclonable keys and not store them anywhere, makes bulk theft of passwords essentially impossible,” said Philip Lundin, chief executive officer of Authentico Technologies. “The significance of this level of security is paramount in this era of GDPR and privacy by design, because the exposure of passwords has reached alarming levels.” In an episode reported on widely in January 2019, nearly 773 million records, including email addresses and passwords, were exposed in a series of data breaches discovered by Australian web security expert Troy Hunt. It is considered the largest-ever discovery of breached data.

“Not only do we all have many more passwords to keep track of than we did just a few years ago, they are key to accessing critical, private, and sensitive data,” Lundin said.

BroadKey enables IoT device manufacturers to securely anchor their connected products with a unique secret key or identity without having to add security-dedicated silicon. BroadKey does not have to be loaded at silicon production but can be installed later in the supply chain, or even retrofitted on deployed devices via “brownfield” update. Additionally, BroadKey can wrap and manage other system keys that form the basis of security solutions ranging from simple to sophisticated.

BroadKey has received award recognition in recent months, including being named IoT Security Product of the Year in the IoT Breakthrough Awards in January.

“I am very happy with Authentico’s choice of BroadKey’s root-of-trust security for its innovative CIPHRA product that addresses the huge problem of protecting usernames and passwords in databases,” said Pim Tuyls, chief executive officer of Intrinsic ID. “By using BroadKey within CIPHRA, Authentico offers a solution that protects all the user credentials even when the database is stolen.”

Availability and Resources

• The CIPHRA product is available now from Authentico Technologies
• Learn more about Intrinsic ID’s BroadKey for providing a hardware root of trust to create, wrap and manage cryptographic keys at www.Intrinsic-ID.com/BroadKey
• See a brief video overview of BroadKey, “BroadKey: Root of Trust”

About Intrinsic ID

Intrinsic ID is the world’s leading digital authentication company, providing the Internet of Things with hardware-based root-of-trust security via unclonable identities for any IoT-connected device. Based on Intrinsic ID’s patented SRAM PUF technology, the company’s security solutions can be implemented in hardware or software. Intrinsic ID security, which can be deployed at any stage of a product’s lifecycle, is used to validate payment systems, secure connectivity, authenticate sensors, and protect sensitive government and military systems. Intrinsic ID technology has been deployed in more than 125 million devices. Award recognition includes the IoT Breakthrough Award, the IoT Security Excellence Award, the Frost & Sullivan Technology Leadership Award and the EU Innovation Radar Prize. Intrinsic ID security has been proven in millions of devices certified by Common Criteria, EMVCo, Visa and multiple governments. Intrinsic ID’s mission: Authenticate Everything^TM. Visit Intrinsic ID online at www.Intrinsic-ID.com.