E*Trade signs for RSA authentication, anti-phishing technology

E*Trade signs for RSA authentication, anti-phishing technology

Online brokerage E*Trade Financial is implementing RSA Security's Adaptive Authentication technology and has also signed up to the vendor's anti-phishing service, FraudAction.

RSA says its Adaptive Authentication product - which is an integrated system created since the vendor acquired New York security software vendor Cyota in 2005 - will deliver an additional layer of behind-the-scenes fraud detection and consumer authentication for E*Trade customers.

The technology is engineered to analyse every login and transaction behind the scenes, and scores the potential risk based on a range of criteria, including the user's IP address, geographic location and prior transaction behaviour.

In addition E*trade will deploy RSA Cyota's FraudAction service, an end-to-end anti-phishing system that helps detect, prepare for, actively respond to and control phishing attempts. The FraudAction service also includes anti-pharming services, designed to assist banks with protection from "DNS poisoning" attacks.

Greg Framke, chief information officer, E*Trade, comments: "After a thorough evaluation process, E*Trade Financial has chosen RSA Security's solutions to deploy a flexible, active multi-factor authentication and fraud prevention system to enhance our multi-layered security measures."

RSA says E*Trade will also join its eFraudNetwork community, a cross-institution online fraud repository which is designed to allow financial institutions to share fraudster profiles and detect and stop online banking and e-commerce fraud in real-time.

Last year the broker introduced two-factor authentication services for online investors. The security system uses a small RSA token device to provide customers with a random, six-digit code that changes every 60 seconds.

In January E*Trade lanuched a fraud protection programme for its online brokerage customers and says it will fully reimburse investors if fraudsters gain unauthorised access to accounts.

Comments: (0)