11Apr

OneID Grabs $7M From Khosla & North Bridge To Replace Usernames And Passwords

FILED IN gadgets No Comments

screen-shot-2012-03-13-at-6-40-03-am

Fragmentation isn’t just a problem reserved for mobile operating systems, it’s inherent to our online identities as well. Our digital identities exist in a loose and fragmented consortium of usernames, email addresses, scree names, social media accounts, passwords, and sitekeys. Many have tried to capture the single sign-on holy grail, and most have failed, because as much as we are inconvenienced by fragmentation, no one wants to hand over their personal information to one entity.

Last month, we covered the beta launch of OneID, a San Jose-based startup founded by Steve Kirsch, a serial entrepreneur, Silicon Valley veteran, and one of the co-inventors of the optical mouse. With OneID, Kirsch is looking to topple the current username/password digital identity paradigm and replace it with a system that uses public key cryptography to assert users’ identities across PCs, smartphones, tablets, and more.

There are already a number of services which attempt to handle the single sign-on problem, and while OneID wants to eliminate passwords from memory, oftentimes these identity plays just end up in offering one more competing standard, rather than achieving the opposite. (See Randall Munroe’s humorous take.) If the service can offer real value to the end user, and reach the kind of scale required to make a difference, there’s hope — but that’s a tall order.

Kirsch says that OneID’s value prop is that it operates like a secure Facebook Connect, keeping payment and address info secure by encrypting it in its distributed architecture, which is only then readable by your particular mobile device. As with single sign-on plays, the goal is to reduce friction and fraud inherent to authentication (and security) that is part of every digital financial transaction. That, and on the consumer side, it comes with the benefit of speeding up the sign in and check out process by way of single-click purchases — like Amazon one-click without the login.

While it’s a big infrastructure play and a tall order, OneID has some help. Kirsch developed OneID’s technology with veteran engineers Jim Fenton, Adam Back, and Bobby Beckmann, and today the startup is bringing on veteran security executive Alex Doll as CEO. Before coming to OneID, Doll was most recently an executive-in-residence at Khosla Ventures, where he was working on new approaches to the digital identity problem. Before Koshla, Doll was a founding executive at PGP Corp, the makers of public-key cryptography tech, which he led from zero to its integration with Symantec’s anti-virus technology. As a result of Doll’s appointment, founder Steve Kirsch will become acting CTO.

On top of its new CEO, OneID is also announcing that it has raised $7 million in series A financing. The round was led by Khosla Ventures and North Bridge Venture Partners. As a result of its new funding, Khosla Ventures General Partner Shirish Sathaye and North Bridge Partner Jonathan Heiliger will be joining the startup’s board of directors.

OneID’s new leadership, coupled with this significant infusion of capital, should be a serious leg-up as the company expands. As mentioned, for OneID to work, it’s going to need a significant user base, because there isn’t a whole lot of value for other sites in adding this tech, even if it’s something consumers are dying for. According to Kirsch, OneID is currently live on over 1,000 sites (that reach over 100 million users), and we can expect that the new leadership to focus on adding zeroes to that number.

Stay tuned. For more on OneID, check out the company at home here.



View full post on TechCrunch » Mobile

, , , , , , , ,

13Mar

Multiple Usernames & Passwords No More: OneID Unveils Its Next-Gen Identity Service

FILED IN gadgets No Comments

Screen shot 2012-03-13 at 6.40.03 AM

Today, our online identities are fragmented across an array of usernames, email addresses, screen names, social media accounts, passwords, and on and on. We struggle to remember our login info and passwords, so oftentimes we use a few simple passwords that are easy to remember, or find ourselves turning to hints or inboxes to remember our forgotten permutations. Of course, this can cause cracks in our security armor, especially when it comes to online transactions, leaving us vulnerable to online thieves and no-goodniks.

Enter: OneID, a San Jose-based startup launching in beta today that is aiming to play a role in the next-generation of digital identity with a service that eliminates the need for multiple usernames and passwords. With OneID, users can securely log in to websites (across platforms), paying online with one single digital identity.

Many have gone after the single sign-on holy grail, but as of yet, all have been rebuffed, because no one wants to hand over all their sensitive personal information to one company.
From the perspective of online businesses, OneID intends to reduce the friction, fraud, and costs associated with authentication and financial transactions, by way of a single login. The goal of which is to improve the experience for the business’ end-user by reducing transaction time. Today, the startup is making its developer release available, which, among other things, allows businesses to take advantage of single sign-on by adding just a few lines of code to their site. (Developers can check it out here.)

According to the OneID team, its service is made possible by a combinator of asymmetric cryptography, the maturity of mobile hardware/software (and their ubiquity), as well as a distributed architecture that collectively reduce business’ vulnerability to sophisticated online threats by merging the security keys of several personal devices, then encrypted in an amorphous mass in a data center.

In short, it’s an all-out, world-changing infrastructure play, and although it’s got a steep hill to climb, the company will remain one-to-watch based on its leadership alone. The startup was founded by Steve Kirsch, a wealthy serial entrepreneur, who has founded six companies, including Mouse Systems, Frame Technology, Infoseek, Propel, Abaca, and OneID.

Beyond Infoseek, which Kirsch sold to for a reported $1.7 billion, he is one of the co-inventors of (and holds one of the original patents to) an early version of the optical mouse, which behind Kirsch’s vehicle Mouse Systems, helped bring the optical mouse to IBM PCs.

Along with engineers Jim Fenton, Adam Back, and Bobby Beckman, who co-created the technology behind OneID, Kirsch is going after the big fish: Integrating OneID’s technology into sites across the Web to let users create their own uniform digital identities, using the distributed software to both house payment information and for form-filling requirements.

As such, OneID’s identity software runs in four places — browsers, mobile devices, websites, and the cloud. Again, for businesses, this means reducing the IT costs inherent to authentication and financial transactions, like lost password recovery, chargebacks, liability from credit card theft, the need to store credit card information on their servers, and, thanks to speeding up sign in and check out shopping, reduces cart abandonment.

And for consumers, their credit card and personal information is stored on their personal devices using OneID’s software, which means it won’t be exposed in the event of a central security breach. Users can also choose the level of security they want for each type of transaction, allowing them to balance security with convenience at their discretion.

Of course, many companies have barked up the next-gen secure identity software tree before, to no avail. However, OneID already has several companies lined up to integrate the identity and payment technology, among then Salsa Labs, which offers payment and marketing services for 2,000 nonprofits organizations.

“After evaluating OneID, we see that nonprofits and campaigns of all sizes can benefit from using the service as another way to protect their supporters, donors and members,” said Salsa Labs Co-founder and CEO Chris Lundberg. “The benefits that OneID brings, such as the ease of use for online users and unparalleled security for website owners, was more than enough incentive for us to roll out the service to the Salsa Network.”

For more on OneID, check them out at home here.



View full post on TechCrunch » Mobile

, , , , , , , ,

02Feb

HTC Says Some Of Its Handsets Leak Wi-Fi Passwords

FILED IN gadgets No Comments

htc-sensation-4g-tmobile-usa

HTC is acknowledging this morning a software flaw found on some of their Android phones that openly offers secure credential across any Wi-Fi network they are connected with. A report from TheNextWeb shows that there is little in the way of stopping someone from grabbing this information and using it for mischievous purposes. The flaw affects a number… Read more

View full post on TmoNews

, , , , ,

23Nov

4sqwifi Uses Foursquare To Show You Nearby WiFi Locations And Their Passwords

FILED IN gadgets No Comments

logo_www

Foursquare, and most of the apps built on top of the location service’s developer platform, are great for exploring the physical world for entertainment. But a new iPhone app called 4sqwifi (download here) offers something that could help those of us who need to be productive remotely — a way to see nearby wifi locations, and the passwords to go with them.

Those of you who have been stuck needing to send an urgent work email while experiencing poor smartphone data reception will understand why this app is useful.

Yes, there are a bunch of other web sites and apps that try to help people find nearby wifi locations. All the ones I’ve seen have had various shortcomings, like outdated or incomplete databases, and no passwords. 4sqwifi solves this problem by finding Foursquare venues near to the user, then searching user tips related to getting WiFi connections (“free wifi,” “wifi password is…” etc.).

After downloading the app from the App Store, you log in with your Foursquare ID and see a list of all of the nearby venues. Click on any of the listings and you’ll see the name of the WiFi connection and its password. (Note that the app had some page-loading problems initially, although I got it to work.)

The team behind the app is a pair of young Greek entrepreneurs, Apostolos Papadopoulos and Giannis Poulakas. Apostolos tells me he got the idea while a senior in high school last winter, but had to finish his university exams before getting started over the summer. He’s going to school in Vienna now, and is continuing to develop the service. The app is currently free, but the team is exploring business models like an in-app payment for an offline map of all of the wifi locations and passwords within a city.

He also just posted a few thoughts on launching the app, which you can check out here.



View full post on TechCrunch » Mobile

, , , , , , , ,

21Nov

I’z In Ur Email, Writing Ur Mom: Worst Passwords

FILED IN Entertainment No Comments

sucky-passwords.jpg

My voice is my passport, verify me.

This is a list of the 25 crappiest passwords of 2011. I guess some people just reallllllly hate their privacy. And identities. Did I tell you one time I got my identity stolen? I found out who did it and buried him in the desert. So, in a way, he kind of got his stolen too. PERMANENTLY. A list of the “God, change it now”:

SplashData, a password management app maker, compiled a list of the 25 worst passwords of 2011, based on millions of stolen passwords that were dumped online.

1. password
2. 123456
3. 12345678
4. qwerty
5. abc123
6. monkey
7. 1234567
8. letmein
9. trustno1
10. dragon
11. baseball
12. 111111
13. iloveyou
14. master
15. sunshine
16. ashley
17. bailey
18. passw0rd
19. shadow
20. 123123
21. 654321
22. superman
23. qazwsx
24. michael
25. football

I’m going to go try these out on my coworker’s computers and, if I manage to get in, do something serious — something to really make them reconsider the strength of their password. “Change their wallpaper to penises?” Bingo.

The 25 Worst Passwords of 2011 [pcmag]

Thanks to Dunc, who still uses a pet’s name. View full post on Geekologie – Gadgets, Gizmos, and Awesome

, , ,

TOP