Rohit Kapoor, profile picture
Uploaded byRohit Kapoor
PPTX, PDF238 views

Login cat tekmonks - v5 (mini)

This document introduces LoginCat security software from TekMonks. It summarizes TekMonks' business operations and provides context on growing cybersecurity threats. LoginCat is presented as a solution to secure existing enterprise applications without modifications. It uses frequently changing passphrases instead of passwords and eliminates user IDs for zero-trust authentication. LoginCat integrates with applications via scripting adapters and detects hacks using behavioral analysis to prevent damages from internal breaches. The software is available both on-premises and in the cloud, and provides auditing of login activity across applications.

Embed presentation

Download to read offline
TekMonks LoginCat Security Software 1
2 Introduction Today’s Security Challenges Issues with current solutions How we secure existing enterprise applications How we secure ourselves Summary Agenda
• Total employee strength – about 100 worldwide. • Revenues exceeding $10 million on an annual basis. • Very strong growth – Operations across 6 countries. • Cash positive, profitable, every year since inception. • Working with the largest Fortune 100 firms and governments worldwide • We are self funded and stable. Not reliant on external funding. TekMonks – A bit about us 3
• In 2016, 89% of breaches had a financial or espionage motive. • 85% of hacks are external actors, and 15% are internal • Majority of attacks use phishing and known vulnerabilities in the security appliances to steal the initial passwords. • 82% of all Cyberattacks started with stealing passwords. • $280 Billion - Total loss to businesses from Cyber-attacks in 2016*2 • $2.1 Trillion - Estimated Cyber Losses in 2019*2 • $74.54 Billion – Google’s 2015 Revenue Hacking industry is a business that is 3.75 times bigger than Google! Hackers today are a well funded multi-Billion dollar illegal corporations with significant computing and research power, all dedicated to hacking you for profits. from 2016 Data Breach Investigations Report Cybersecurity – Some startling facts…* 4*2 Forbes: http://www.forbes.com/sites/stevemorgan/2016/01/17/cyber-crime-costs-projected-to-reach-2-trillion-by-2019/#2e21dd3f3bb0
• It takes days for an attacker to “exfiltrate” data – i.e. steal valuable data post attack. It is not the initial breach per-se which causes damage, it is this step of stealing valuable company data – where the attacker is then compromising internal systems and stealing data from them. This step takes days to succeed. It is not instantaneous, but it doesn’t take 3 or 6 months either. Cybersecurity – time is not on our side… 5
Anatomy of a typical cyberattack – 2016 Data 6
7 A short analysis of the hacker landscape Just why are things getting worse? Why do hackers succeed more easily lately? Or – what’s the cause, and thus, the solution to stop these hacks.
• The continued, high frequency of successful cyberattacks against today’s enterprises has made it abundantly clear that traditional, perimeter-centric security strategies e.g. Firewalls, VPNs, while necessary, are no longer sufficient. • When a hacker is inside the corporate network it is much easier to hide and hack the internal core business applications and assets. • Internal applications, which run core business today, were designed 10 years ago, or 5 years ago, even 3 years ago – we are in a different world today. • Rewriting core business applications is not a solution – plus it is a cat and mouse game, by the time they are rewritten, security threats and standards would have evolved. Network layer security: Necessary but not sufficient 8
• Crackers today are really efficient at breaking passwords. • Deep Blue Supercomputer - around 1999 - beat Garry Kasparov - 11.38 GFLOPS. • Samsung Galaxy S7 with SnapDragon 820 packs 498.5 GFLOPS. The Samsung Smartphone is approximately 44 times faster than the Deep Blue. • GPU Radeon R9 Fury X2 = 17,204 GLOPS. 1,511 times faster than Deep Blue. • Hackers routinely build rigs with up to 25 of these GPUs, which is 430 TeraFLOPS. https://goo.gl/1nVst6. This is same power as Blue Gene Supercomputer at Livermore Nuclear Laboratory used to simulate nuclear reactions. • If one thinks passwords are secure because decrypting them will take a lot of computing power – one is not living in the reality of 2016. 9 Just how easy are passwords to hack?
10 Password Cracking Rigs
• Biometric and Thumb? Every thing you touch will now contain your password. This is one of the easiest "security measures" to break. There are at least 7 different currently known ways to defeat this. For example, simple inkjets can be used to defeat fingerprint based authentication. • Iris Scanning? Megapixel cameras can steal your Iris patterns. • Facial Identification? Face masks take care of defeating this security measure. • Token / RSA? No longer secure. Quantum computers can hack it very easily. US Government has already abandoned it. MIT has already developed a Quantum Computer capable of easily hacking RSA. What about other technologies? Biometrics? 11
12 LoginCat Part 1: How do we secure existing internal and cloud applications?
• How do we secure existing applications, which were written in a different security landscape, use insecure logins and algorithms SHA1, SHA5 or even MD5? We thought we could hide them behind a firewall but clearly that doesn’t work when the hacker is inside! • We don’t want to modify our critical business applications and add risk – can we secure existing applications as is? Core Issues 13
• What do we do today to deal with this? Policy to change passwords every 3 months. • But … it takes a hacker days – not months to crack passwords and steal internal data. 3 months is too long! • Why not change them every day? Or every hour? With really complex computer generated passwords which are very hard to crack. • A Cybersecurity solution is required to fight such password attacks pro-actively. This solution should be zero trust, and work at the application layer, and it should secures existing applications, without requiring modifications. This is what LoginCat does. 14 Zero Trust and Application Layer Level Cybersecurity
LoginCat Protection 15
How can people do their work, if passwords change every hour? LoginCat comes with a built in SSO solution which works across all major Cloud and in-house applications. Users no longer need to be aware of their constantly changing passwords, since LoginCat will log them into the end systems. And … we win even when we lose When an application is hacked, LoginCat will either lock out the attackers automatically by changing the credentials – or detect the hack (if the hacker has locked the account) – either way preventing damages. Secure by design 16
• LoginCat scripting based authentication adapters will work with all your existing applications – Web based, terminal or cloud. • For the first time have a unified security policy across internal applications and the cloud. • No changes needed to existing applications. Do they use MD5? SHA1? We still secure them without having to recode them. • We manage the passwords, change them on a frequent basis, making your existing application un-hackable, and quickly detect any hack attempts. • Appliance or Cloud Based – bring us on premise with an appliance, or run LoginCat via from our hosted cloud. 17 Easily integrate to your existing applications – Cloud or Appliance
18 LoginCat Part 2: How do we secure ourselves now?
• First we eliminates passwords. • Pass phrase based authentication – Mathematically proven to be extremely hard to hack, even with today’s computing power. • Human brains can’t remember good passwords e.g. $@)Nq;F*(.JRwd#$ , but even babies learn to put together two or three words quickly and make short sentences • Second we eliminates User IDs as well. We provide no hack targets, zero exposure, zero trust. Securing LoginCat 19
As the processing speed has increased, passwords are notoriously easy to hack. 8 character passwords take 15 hours to crack. Secure by design – End of Passwords 20 LoginCat exclusively uses pass phrases instead of passwords. Pass phrases are next to impossible to crack, even with the fastest computers today and tomorrow!
• Edge of network security features. • Deep security algorithms – beyond IP firewalls LoginCat will analyze incoming login attempts and ban hackers using habit and heuristic analysis. • Some examples • Pattern analysis of incoming request headers to ban distributed attacks, for example same request headers from multiple IPs, will trigger off the DDoS attack prevention monitor. • Login from unknown locations, or locations that don’t match mobile devices., • Login at times which don’t match habits, etc. Secure by design – Algorithm based hack detection 21
• User ID provisioning and instant locking from all internal applications, if needed. • Constantly updated – TekMonks will provide firmware updates to include latest security and AI algorithms to protect against emerging threats. • Both mobile (iOS and Android) and web based. • Readily auditable – provides entire audit history of who logged in, when did someone access an internal application, how long they were active, their IP, mobile or web based access and even their location! 22 Other Benefits
23 Demo
THANK YOU 24

More Related Content

PPTX
Login cat tekmonks - v4
byRohit Kapoor
 
PPTX
Login cat tekmonks - v3
byTEKMONKS
 
PPTX
LoginCat from TekMonks
byRohit Kapoor
 
PDF
DefCamp - Mohamed Bedewi - Building a Weaponized Honeypot
byShah Sheikh
 
PPTX
Art Hathaway - Artificial Intelligence - Real Threat Prevention
bycentralohioissa
 
PDF
逃避可恥還沒有用- 你不可不知的物聯網安全問題與挑戰(Ashley Shen & Belinda Lai)
byHITCON GIRLS
 
PPTX
Securing the Cloud
byGGV Capital
 
PDF
The role of big data, artificial intelligence and machine learning in cyber i...
byAladdin Dandis
 
Login cat tekmonks - v4
byRohit Kapoor
 
Login cat tekmonks - v3
byTEKMONKS
 
LoginCat from TekMonks
byRohit Kapoor
 
DefCamp - Mohamed Bedewi - Building a Weaponized Honeypot
byShah Sheikh
 
Art Hathaway - Artificial Intelligence - Real Threat Prevention
bycentralohioissa
 
逃避可恥還沒有用- 你不可不知的物聯網安全問題與挑戰(Ashley Shen & Belinda Lai)
byHITCON GIRLS
 
Securing the Cloud
byGGV Capital
 
The role of big data, artificial intelligence and machine learning in cyber i...
byAladdin Dandis
 

What's hot

PDF
HYPR: The Leading Provider of True Passwordless Security®
byHYPR
 
PDF
BalCcon 2015 - DTS Solution - Attacking the Unknown by Mohamed Bedewi
byShah Sheikh
 
PPTX
Ed McCabe - Putting the Intelligence back in Threat Intelligence
bycentralohioissa
 
PDF
A Blueprint for Web Attack Survival
byImperva
 
PPTX
Network Security of Data Protection
byUthsoNandy
 
PPT
Mark Arena - Cyber Threat Intelligence #uisgcon9
byUISGCON
 
PPTX
Chris Haley - Understanding Attackers' Use of Covert Communications
bycentralohioissa
 
PDF
Hijacking a Pizza Delivery Robot (using SQL injection)
byPriyanka Aash
 
PPTX
INFINITY Presentation
byCristian Garcia G.
 
PDF
Preventing Data Breaches
byxband
 
PDF
AI for CyberSecurity
bySatnam Singh
 
PPTX
2015: The year-ahead-in-cyber-security
byStephen Cobb
 
PPTX
Cyber Security in AI (Artificial Intelligence)
byHarsh Bhanushali
 
PDF
Cyber Security - awareness, vulnerabilities and solutions
byinLabFIB
 
PPTX
Jake Williams - Navigating the FDA Recommendations on Medical Device Security...
bycentralohioissa
 
PDF
GISEC 2015 Your Network in the Eyes of a Hacker - DTS Solution
byShah Sheikh
 
PDF
Cyber-Security Threats: Why We are Losing the Battle (and Probably Don't Even...
byPlus Consulting
 
PDF
Security/Compliance - Advanced Threat Detection and Compliance
byAdvanced Technology Consulting (ATC)
 
PPTX
Cyber Security Predictions 2016
byQuick Heal Technologies Ltd.
 
HYPR: The Leading Provider of True Passwordless Security®
byHYPR
 
BalCcon 2015 - DTS Solution - Attacking the Unknown by Mohamed Bedewi
byShah Sheikh
 
Ed McCabe - Putting the Intelligence back in Threat Intelligence
bycentralohioissa
 
A Blueprint for Web Attack Survival
byImperva
 
Network Security of Data Protection
byUthsoNandy
 
Mark Arena - Cyber Threat Intelligence #uisgcon9
byUISGCON
 
Chris Haley - Understanding Attackers' Use of Covert Communications
bycentralohioissa
 
Hijacking a Pizza Delivery Robot (using SQL injection)
byPriyanka Aash
 
INFINITY Presentation
byCristian Garcia G.
 
Preventing Data Breaches
byxband
 
AI for CyberSecurity
bySatnam Singh
 
2015: The year-ahead-in-cyber-security
byStephen Cobb
 
Cyber Security in AI (Artificial Intelligence)
byHarsh Bhanushali
 
Cyber Security - awareness, vulnerabilities and solutions
byinLabFIB
 
Jake Williams - Navigating the FDA Recommendations on Medical Device Security...
bycentralohioissa
 
GISEC 2015 Your Network in the Eyes of a Hacker - DTS Solution
byShah Sheikh
 
Cyber-Security Threats: Why We are Losing the Battle (and Probably Don't Even...
byPlus Consulting
 
Security/Compliance - Advanced Threat Detection and Compliance
byAdvanced Technology Consulting (ATC)
 
Cyber Security Predictions 2016
byQuick Heal Technologies Ltd.
 

Similar to Login cat tekmonks - v5 (mini)

PPTX
Login cat tekmonks - v4
byTEKMONKS
 
PPTX
LoginCat - Zero Trust Integrated Cybersecurity
byRohit Kapoor
 
PPTX
Data Con LA 2019 - So You got Hacked, how Quickly Can your Company Recover? b...
byData Con LA
 
PDF
Getting users to care about security
byAlison Gianotto
 
PPT
CYBER HACKING DEMYSTIFYING THE MYSTERIOUS BUSINESS OF HACKING
bymailtomanju2410
 
PDF
IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...
byIRJET Journal
 
PPTX
Cybersecurity awareness _20241220_223916_0000.pptx
byjoyabisha1
 
PPTX
OpenTechTalks: Ethical hacking with Kali Linux (Tijl Deneut, UGent)
byAvansa Mid- en Zuidwest
 
PDF
Creating a culture of security.pdf
byTechSoup
 
PPTX
Security in web based attacks and application.pptx
byumanggargcse
 
PPTX
Security_Awareness_Primer.pptx
byFaith Shimba
 
PPTX
What is the Cybersecurity plan for tomorrow?
bySamvel Gevorgyan
 
PDF
OWASP Top 10 Web Attacks (2017) with Prevention Methods
byIRJET Journal
 
PPT
Information Security - A Discussion
byKaushik Patra
 
PDF
Invited Talk - Cyber Security and Open Source
byhack33
 
PPTX
Will Your Business Get Hacked - Hull (Apr 28)
byHBP Systems Ltd
 
PDF
The 10 Secret Codes of Security
byKarina Elise
 
PPTX
Awareness Security 123.pptx
byRajuSingh730938
 
PPTX
USG_Security_Awareness_Primer (1).pptx
byssuser59e4b8
 
PPTX
USG_Security_Awareness_Primer.pptx
bysumita02
 
Login cat tekmonks - v4
byTEKMONKS
 
LoginCat - Zero Trust Integrated Cybersecurity
byRohit Kapoor
 
Data Con LA 2019 - So You got Hacked, how Quickly Can your Company Recover? b...
byData Con LA
 
Getting users to care about security
byAlison Gianotto
 
CYBER HACKING DEMYSTIFYING THE MYSTERIOUS BUSINESS OF HACKING
bymailtomanju2410
 
IRJET- Image Steganography using Pixel Pattern Matching in Cloud Data Sto...
byIRJET Journal
 
Cybersecurity awareness _20241220_223916_0000.pptx
byjoyabisha1
 
OpenTechTalks: Ethical hacking with Kali Linux (Tijl Deneut, UGent)
byAvansa Mid- en Zuidwest
 
Creating a culture of security.pdf
byTechSoup
 
Security in web based attacks and application.pptx
byumanggargcse
 
Security_Awareness_Primer.pptx
byFaith Shimba
 
What is the Cybersecurity plan for tomorrow?
bySamvel Gevorgyan
 
OWASP Top 10 Web Attacks (2017) with Prevention Methods
byIRJET Journal
 
Information Security - A Discussion
byKaushik Patra
 
Invited Talk - Cyber Security and Open Source
byhack33
 
Will Your Business Get Hacked - Hull (Apr 28)
byHBP Systems Ltd
 
The 10 Secret Codes of Security
byKarina Elise
 
Awareness Security 123.pptx
byRajuSingh730938
 
USG_Security_Awareness_Primer (1).pptx
byssuser59e4b8
 
USG_Security_Awareness_Primer.pptx
bysumita02
 

More from Rohit Kapoor

PPTX
About Tekmonks
byRohit Kapoor
 
PPTX
Neuranet.pptx
byRohit Kapoor
 
PPTX
Logincat MFA and SSO
byRohit Kapoor
 
PPTX
API400
byRohit Kapoor
 
PPTX
Corby - AI Core Banking Bot
byRohit Kapoor
 
PPTX
LoginCat - Mini Presentation
byRohit Kapoor
 
About Tekmonks
byRohit Kapoor
 
Neuranet.pptx
byRohit Kapoor
 
Logincat MFA and SSO
byRohit Kapoor
 
API400
byRohit Kapoor
 
Corby - AI Core Banking Bot
byRohit Kapoor
 
LoginCat - Mini Presentation
byRohit Kapoor
 

Recently uploaded

PDF
Here are the winners of KALIDASA SAMMAN.
byglcppro
 
PDF
LMS.Golconda.Vanredni.Broj.001.pdfjjjjjjj
byzoran radovic
 
PPTX
Lesson 3 - Methodology of Green Computing - part2 - dela cruz.pptx
byOmar Fernandez
 
PPTX
Overview-of-Anti-DDoS-Solutions-On-Premise-vs-On-Cloud.pptx
bybunhongkruy
 
PPTX
Artificial Intelligence (AI) Technology Project Proposal _ by Slidesgo.pptx
byadhyaadi804
 
PPTX
Dalhousie University Diploma
by文凭办理维多利亚大学购买毕业证学位认证知乎【Q微:1954292140】
 
PDF
Key Duties and Roles of an Ecommerce Developer Singapore
byHachi Web Solution
 
PDF
Novi.LMS.Veseli.Cetvrtak.001 (1).pdfjjjj
byzoran radovic
 
PPTX
Why-Enterprises-Should-Build-Their-Own-Core-Network-and-Own-Their-ASN-and-Pub...
bybunhongkruy
 
PPTX
Number_Guessing_Game_Dsbsbssbzboc[1].pptx
byfbinsta3426
 
PPTX
Lesson 5 - Cyber attack Pt 3 - Matsuhashi.pptx
byOmar Fernandez
 
PPTX
SriLank SLT LTE Network Sharing V2.pptx
bynthuang
 
PDF
Greetings All Students Update 3 by LDMMIA
by©LDMMIA, ©Reiki Yoga
 
PDF
Beacon Kit slides tech framework for world game (s) pdf
bySteven McGee
 
PPTX
tacacstrianingforwirelessnetworkengineers
byRaviTejaTammineni
 
PPTX
Anti-DDoS Service Introduction(Customer Version) - 2025(1).pptx
bybunhongkruy
 
DOCX
BestMaker.ai: The Complete Brand Story, Founder's Vision, and AI Creative Pla...
byssuser7381d6
 
Here are the winners of KALIDASA SAMMAN.
byglcppro
 
LMS.Golconda.Vanredni.Broj.001.pdfjjjjjjj
byzoran radovic
 
Lesson 3 - Methodology of Green Computing - part2 - dela cruz.pptx
byOmar Fernandez
 
Overview-of-Anti-DDoS-Solutions-On-Premise-vs-On-Cloud.pptx
bybunhongkruy
 
Artificial Intelligence (AI) Technology Project Proposal _ by Slidesgo.pptx
byadhyaadi804
 
Dalhousie University Diploma
by文凭办理维多利亚大学购买毕业证学位认证知乎【Q微:1954292140】
 
Key Duties and Roles of an Ecommerce Developer Singapore
byHachi Web Solution
 
Novi.LMS.Veseli.Cetvrtak.001 (1).pdfjjjj
byzoran radovic
 
Why-Enterprises-Should-Build-Their-Own-Core-Network-and-Own-Their-ASN-and-Pub...
bybunhongkruy
 
Number_Guessing_Game_Dsbsbssbzboc[1].pptx
byfbinsta3426
 
Lesson 5 - Cyber attack Pt 3 - Matsuhashi.pptx
byOmar Fernandez
 
SriLank SLT LTE Network Sharing V2.pptx
bynthuang
 
Greetings All Students Update 3 by LDMMIA
by©LDMMIA, ©Reiki Yoga
 
Beacon Kit slides tech framework for world game (s) pdf
bySteven McGee
 
tacacstrianingforwirelessnetworkengineers
byRaviTejaTammineni
 
Anti-DDoS Service Introduction(Customer Version) - 2025(1).pptx
bybunhongkruy
 
BestMaker.ai: The Complete Brand Story, Founder's Vision, and AI Creative Pla...
byssuser7381d6
 

Login cat tekmonks - v5 (mini)

  • 1.
  • 2.
    2 Introduction Today’s Security Challenges Issueswith current solutions How we secure existing enterprise applications How we secure ourselves Summary Agenda
  • 3.
    • Total employeestrength – about 100 worldwide. • Revenues exceeding $10 million on an annual basis. • Very strong growth – Operations across 6 countries. • Cash positive, profitable, every year since inception. • Working with the largest Fortune 100 firms and governments worldwide • We are self funded and stable. Not reliant on external funding. TekMonks – A bit about us 3
  • 4.
    • In 2016,89% of breaches had a financial or espionage motive. • 85% of hacks are external actors, and 15% are internal • Majority of attacks use phishing and known vulnerabilities in the security appliances to steal the initial passwords. • 82% of all Cyberattacks started with stealing passwords. • $280 Billion - Total loss to businesses from Cyber-attacks in 2016*2 • $2.1 Trillion - Estimated Cyber Losses in 2019*2 • $74.54 Billion – Google’s 2015 Revenue Hacking industry is a business that is 3.75 times bigger than Google! Hackers today are a well funded multi-Billion dollar illegal corporations with significant computing and research power, all dedicated to hacking you for profits. from 2016 Data Breach Investigations Report Cybersecurity – Some startling facts…* 4*2 Forbes: http://www.forbes.com/sites/stevemorgan/2016/01/17/cyber-crime-costs-projected-to-reach-2-trillion-by-2019/#2e21dd3f3bb0
  • 5.
    • It takesdays for an attacker to “exfiltrate” data – i.e. steal valuable data post attack. It is not the initial breach per-se which causes damage, it is this step of stealing valuable company data – where the attacker is then compromising internal systems and stealing data from them. This step takes days to succeed. It is not instantaneous, but it doesn’t take 3 or 6 months either. Cybersecurity – time is not on our side… 5
  • 6.
    Anatomy of atypical cyberattack – 2016 Data 6
  • 7.
    7 A short analysisof the hacker landscape Just why are things getting worse? Why do hackers succeed more easily lately? Or – what’s the cause, and thus, the solution to stop these hacks.
  • 8.
    • The continued,high frequency of successful cyberattacks against today’s enterprises has made it abundantly clear that traditional, perimeter-centric security strategies e.g. Firewalls, VPNs, while necessary, are no longer sufficient. • When a hacker is inside the corporate network it is much easier to hide and hack the internal core business applications and assets. • Internal applications, which run core business today, were designed 10 years ago, or 5 years ago, even 3 years ago – we are in a different world today. • Rewriting core business applications is not a solution – plus it is a cat and mouse game, by the time they are rewritten, security threats and standards would have evolved. Network layer security: Necessary but not sufficient 8
  • 9.
    • Crackers todayare really efficient at breaking passwords. • Deep Blue Supercomputer - around 1999 - beat Garry Kasparov - 11.38 GFLOPS. • Samsung Galaxy S7 with SnapDragon 820 packs 498.5 GFLOPS. The Samsung Smartphone is approximately 44 times faster than the Deep Blue. • GPU Radeon R9 Fury X2 = 17,204 GLOPS. 1,511 times faster than Deep Blue. • Hackers routinely build rigs with up to 25 of these GPUs, which is 430 TeraFLOPS. https://goo.gl/1nVst6. This is same power as Blue Gene Supercomputer at Livermore Nuclear Laboratory used to simulate nuclear reactions. • If one thinks passwords are secure because decrypting them will take a lot of computing power – one is not living in the reality of 2016. 9 Just how easy are passwords to hack?
  • 10.
  • 11.
    • Biometric andThumb? Every thing you touch will now contain your password. This is one of the easiest "security measures" to break. There are at least 7 different currently known ways to defeat this. For example, simple inkjets can be used to defeat fingerprint based authentication. • Iris Scanning? Megapixel cameras can steal your Iris patterns. • Facial Identification? Face masks take care of defeating this security measure. • Token / RSA? No longer secure. Quantum computers can hack it very easily. US Government has already abandoned it. MIT has already developed a Quantum Computer capable of easily hacking RSA. What about other technologies? Biometrics? 11
  • 12.
    12 LoginCat Part 1: Howdo we secure existing internal and cloud applications?
  • 13.
    • How dowe secure existing applications, which were written in a different security landscape, use insecure logins and algorithms SHA1, SHA5 or even MD5? We thought we could hide them behind a firewall but clearly that doesn’t work when the hacker is inside! • We don’t want to modify our critical business applications and add risk – can we secure existing applications as is? Core Issues 13
  • 14.
    • What dowe do today to deal with this? Policy to change passwords every 3 months. • But … it takes a hacker days – not months to crack passwords and steal internal data. 3 months is too long! • Why not change them every day? Or every hour? With really complex computer generated passwords which are very hard to crack. • A Cybersecurity solution is required to fight such password attacks pro-actively. This solution should be zero trust, and work at the application layer, and it should secures existing applications, without requiring modifications. This is what LoginCat does. 14 Zero Trust and Application Layer Level Cybersecurity
  • 15.
  • 16.
    How can peopledo their work, if passwords change every hour? LoginCat comes with a built in SSO solution which works across all major Cloud and in-house applications. Users no longer need to be aware of their constantly changing passwords, since LoginCat will log them into the end systems. And … we win even when we lose When an application is hacked, LoginCat will either lock out the attackers automatically by changing the credentials – or detect the hack (if the hacker has locked the account) – either way preventing damages. Secure by design 16
  • 17.
    • LoginCat scriptingbased authentication adapters will work with all your existing applications – Web based, terminal or cloud. • For the first time have a unified security policy across internal applications and the cloud. • No changes needed to existing applications. Do they use MD5? SHA1? We still secure them without having to recode them. • We manage the passwords, change them on a frequent basis, making your existing application un-hackable, and quickly detect any hack attempts. • Appliance or Cloud Based – bring us on premise with an appliance, or run LoginCat via from our hosted cloud. 17 Easily integrate to your existing applications – Cloud or Appliance
  • 18.
    18 LoginCat Part 2: Howdo we secure ourselves now?
  • 19.
    • First weeliminates passwords. • Pass phrase based authentication – Mathematically proven to be extremely hard to hack, even with today’s computing power. • Human brains can’t remember good passwords e.g. $@)Nq;F*(.JRwd#$ , but even babies learn to put together two or three words quickly and make short sentences • Second we eliminates User IDs as well. We provide no hack targets, zero exposure, zero trust. Securing LoginCat 19
  • 20.
    As the processingspeed has increased, passwords are notoriously easy to hack. 8 character passwords take 15 hours to crack. Secure by design – End of Passwords 20 LoginCat exclusively uses pass phrases instead of passwords. Pass phrases are next to impossible to crack, even with the fastest computers today and tomorrow!
  • 21.
    • Edge ofnetwork security features. • Deep security algorithms – beyond IP firewalls LoginCat will analyze incoming login attempts and ban hackers using habit and heuristic analysis. • Some examples • Pattern analysis of incoming request headers to ban distributed attacks, for example same request headers from multiple IPs, will trigger off the DDoS attack prevention monitor. • Login from unknown locations, or locations that don’t match mobile devices., • Login at times which don’t match habits, etc. Secure by design – Algorithm based hack detection 21
  • 22.
    • User IDprovisioning and instant locking from all internal applications, if needed. • Constantly updated – TekMonks will provide firmware updates to include latest security and AI algorithms to protect against emerging threats. • Both mobile (iOS and Android) and web based. • Readily auditable – provides entire audit history of who logged in, when did someone access an internal application, how long they were active, their IP, mobile or web based access and even their location! 22 Other Benefits
  • 23.
  • 24.