Consumers and businesses around the world today face an overwhelming amount of online security and transaction related challenges. Financial institutions, banks, brokers, online merchants and even government face a myriad of corporate governance and compliance regulations. In addition, we see a growing number of mobile computing devices used to access the internet with and without any minimum uniform standard of security implemented, which exposes their users to dangerous risks including identity theft, the loss of money or personal and confidential information to online criminals � this has led to a dramatic decrease in consumer confidence regarding the online environment.
TrustDefender is designed with both parties in mind. Business/eCommerce sites can have all the safeguards in place at their end to advise users it is safe to transact online, but if the customer�s device is not properly secured then it leaves an open back door for online fraudsters to steal information.
TrustDefender effectively locks out online criminals with it's unique approach of providing a complete "End to End" solution ensuring no third party can intercept information transacted during an online session.
A recent recommendation made by Gartner after a survey done on banking fraud. "Regarding external threats against customers, work to prevent malware on customer desktops from stealing sensitive information, not just preventing brand-damaging phishing attacks."
GARTNER 2008 STUDY: "Bank Spending on Fraud and Authentication Rises......" Refer to Resources TAB
How TrustDefender Works:
1. Members/Customers visit the website which is verified by TrustDefender's GAP, a 2 factor authentication process inspecting URL and digital certificate fingerprint of the website to verify it is the genuine eCommerce site they will be transacting with.
2. A security health check is then performed on the remote PC prior to input of username and password or other confidential details ensuring ID protection:
- No keyloggers, trojans, rootkits, malware or spyware is running
- AV is switched on and up to date
- Firewall is enabled, etc.
3. Security policies and rules are enabled prior to login and remain during the entirety of the online transaction, to ensure the online transaction is performed under the safest conditions.
4. Financial institutions are able to apply security policies and rules based on PC security health status, which may include:
- Restrict transaction destinations, limits or types
- Alert recommended action i.e. update AV, enable firewall
- Run in Safe & Secure mode
5. Real-time Audit & Reporting is available to financial institutions:
- Antivirus Status
- Firewall Status
- Windows Update Status
- Safe&Secure Mode, Etc
|
Security Policies Turn the security policies into action. Define security policies based on already published security recommendations to effectively increase the customer confidence in the online transaction. Security Policies can either be enforced or just used for education.
Example policies may include:- - Require up to date Antivirus Scan - Require active Antispyware - Is Windows Up Date turned on - Firewall is switched on - Enable Safe & Secure Mode - Secure Lockdown - Two Factor Authentication, etc |
|
Integrated End To End Online Transaction Security (Client + Enterprise Server Edition)
By eliminating any back doors, TrustDefender takes away the weak links within a security chain. By adding an extra layer of security and ensuring integrity of business/eCommerce website all the way to the safety of the end users/customers PC device.
No third party can intercept the information during transaction.
Real Time Auditing & Reporting
- % of customer is using which AV solution?
- % of customers log in without an AV Scan or firewall switched on?
- % of customers is using which firewall solution?
- % of customers with unknown software.
- % of customers with known Malware/disallowed software.
- Customers running in Safe & Secure Mode
- % of customers with Microsoft SP2 in-built firewall.
Safe & Secure Mode (patent-pending)
- Only allow 'safe' computers to do online business with you.
- Warns users if there is an unknown process running on customers computer device.
- Only allow known good software to be active using a White List approach.
Secure Lockdown
Takes all collected information from the *GAP Program and the evaluation of the security policies into account and lock down the end users PC to provide maximum protection during the online transaction.
- Online businesses can give security advice in real time to their customers
- Includes On-Demand Personal firewall. Blocking ALL internet requests not belonging to *GAP participants.
- Guarantees the customer which content is genuine
Two Factor Authentication
The classical two factor authentication provides the online business with two factors that have to match before access is granted verifying a users identity.
TrustDefender is a first in allowing a customer/member to verify the online business.
- Provides customers with two independent factors for website authentication. IP-Address and the SSL certificate fingerprints.
- First factor is the GAP Window
- Second factor is the personalised Login.
Quiet Mode (Enterprise Server Edition)
- No pop up dialogue boxes at end user PC.
- Apply different rules and policies based on health state of customers PC.
Automatic Client Deployment
- Operates independently of browser and/or operating systems
- Fallback mechanism to ActiveX, Java, Flash and JavaScript.
One Time Download Client
- No need to redeploy once downloaded
- Same technology for both consumer and online business version
Software Only Solution
No need to deploy hardware devices such as tokens or (SMS) out of band solutions.
Logistically easy to distribute - Minimal implementation and maintenance costs.
Customers/Members have no concerns of losing or damaging software.
Inbuilt Root Kit Scanner
- No software goes undetected
|
*Guaranteed Authentication Program (GAP)
The Guaranteed Authentication Program (GAP) mode is part of TrustDefender software and provides a means to unambiguously identify the Webservice Provider and is the first step for all future processing. Once identified, Trustdefender will show a non-forgeable browser independent window with the IMAGE and NAME of the connected Business. The GAP-mode does incorporate also the IP-Address and the SSL certificate fingerprints.
|
 |
Providing invulnerability to any:-
- DNS Spoofing
- Man in the middle attacks
- Pharming attacks
TrustDefender provides a GAP Policy Editor for Submission of this Information.
As a special introductory offer, TrustDefender will generate a draft for the Guaranteed Authentication to be finalized by the Online Business. (Valid until December 31, 2008)
Protection from Phishing & Pharming attacks
Unique IP Redirection Protection & Website Identity confirmation
TrustDefender automatically validates the unique and non-forgeable website security tokens for registered customers to eliminate man in the middle and other variants of IP re-direction or spoofing attacks.
Unknown Website Community Identity Check
If any re-directions occur TrustDefender alerts the customer they have been redirected to a non trusted site and can provide community feedback on how other users evaluated the reached site. TrustDefender effectively blocks access to this site and prevents the non trusted site from accessing the customer's computer making it virtually invisible to the extent to external third parties during the TrustDefender protected session.
Testimonials
Financial Institutions
“What attracted us to TrustDefender was the fact that cybercrime is becoming an issue for financial institutions worldwide and our members. So, to clearly demonstrate that security is absolutely one of our top priorities, we decided to provide our members with the best technology available in order to enhance the computer security of our members when they are banking online. We identified TrustDefender as an outstanding emerging technology that complements other initiatives by CAPE and by our members to provide an extra layer of security to that enables our members to enhance protection at their end, which will also give them increased peace of mind.
While we have many layers of security, the weak link in the chain is usually the home or business computer. Often, people don’t even have the basics such as firewalls or antivirus software installed on their computers. By offering TrustDefender to all our members through our website – free of charge – we know that our customers will have the additional security of having their banking sessions quarantined while they transact with us.
Ray Battle, CEO of Bananacoast Community Credit Union
We’ve always provided free Internet banking, so this is just another reason for people to switch to CAPE Credit Union. By providing the TrustDefender security solution to our customers free of charge, we are not only becoming one of the leading financial institutions to adopt TrustDefender, but we’re also offering our members access to a solution to enhance their own protection from online fraud and identify theft. We feel sure that this will lead to an increase in the use of Internet banking by our members, who will now be able to enjoy the convenience of anywhere, anytime management of their finances, with the peace of mind that they are doing the most they can to protect their money and identity.”
Steve Warren, CEO of CAPE Credit Union
Customers/Members
"As a business, I would become a member of the GAP program, and recommend my customers to purchase TrustDefender."
Gary Finley, Small Business Owner - USA
"I have been running TrustDefender on my laptop and it is an interesting product, there is nothing like this that I can think of over here".
"TrustDefender is a very interesting emerging Australian security technology that could revolutionize how governments, banks and online businesses and even telecommunication providers can help consumers protect their identity and confidential information when purchasing goods and services or paying bills online"
Senator Fiona Nash, Senator for NSW
"TrustDefender is an impressive product. It certainly is something we could use in our Financial Services portfolio"
Jim Whitten, Non-Stop Enterprise Division - Hewlett Packard USA
"This is real - End to End Protection - that finally allows CIO's to sleep peacefully at night. According to our customer CIO's - information technology security is the least understood and most volatile areas in IT. Any network is only as strong as the weakest point in it…. TrustDefender ensures the weakest points are always identified and any risks mitigated".
Rohit Dass (ex CIO), Consulting Director, Business Catalyst International
"I am now hooked. I think this would be a tremendous product to offer to our customers. Given the demographic we principally deal with in this part of the world, I hear concerns about internet security every day. The over 60's group is remarkably internet savvy and very well connected - online wise yet are VERY reluctant to engage in any activity that they perceive puts them at risk from fraudulent activities. I therefore believe TrustDefender will be an IDEAL addition to the suite of services that we offer them."
Garth Freeman, CEO Buzz Broadband - QLD
"To TrustDefender, I want to compliment you highly on your excellent product. It gives me a great sense of security to know that my personal identity.....I.D, Passwords etc are protected both before and during transactions stopping my details being stolen and online crime being perpetrated against me, to my personal and financial loss.
I must highly compliment the fantastic support given to me by TrustDefender when I had a couple of minor setting up problems, due more to my lack of computer knowledge."
Graham, Sydney, Australia
"I originally heard of your product on 2GB Radio and listened to what the service provided, so immediately went to the website to sign-up and download your product. It is a small price to pay for "peace of mind", to know that my passwords, pin numbers etc cannot be accessed, as I am a Home Loan Broker. I cannot understand why the Bank's and other financial institutions don't set up TrustDefender on their systems and provide their on-line customers the security this service provides. It would save the institutions millions of dollars in claims against them for fraudulent activities on customers' accounts.
Most of all, I was especially impressed that I could speak with someone. It's great to see that an Australian Company can provide this essential security service, and we would all do well to support them here. We don't need to go to overseas companies when we have a good provider here.
I feel confident in suggesting TrustDefender to all my clients, and wish you all the success you deserve, well done."
Monica, Sydney, Australia
"Dear Sirs,
May I congratulate you on this product. You have given me such piece of mind whenever I am using Internet Banking. I have "tested" the product to check or claim and indeed once you are "locked" into the Web Protection nothing, but nothing, can come near or enter the computer.
I would have paid tenfold more for this type of protection. Thank you again for the product."
Paul, Sydney, Australia