Verdasys Says it Has A Better Way to Protect Web Transactions Against Malware

all communications with the protected site. Says Ledingham, “We immediately encrypt all input from the keyboard, bypassing other points of vulnerability in Windows.”

Ledingham says that since only the originating company’s Web servers have the keys needed to decrypt the data, the SiteTrust technology protects against all sorts of attacks, including keyloggers, unauthorized screen captures, code injection attacks, so-called “man in the browser” and “man in the middle” attacks, and phishing and website spoofing. In studies funded by Verdasys, two independent security consulting firms found that this approach was “100 percent effective against all known malware threats,” in the words of a company statement.

The SiteTrust concept is similar in spirit to an idea developed by Liquid Machines, another Waltham company whose “application injection” technology takes over word-processing programs, e-mail software, and the like, automatically encrypting digital documents and then decrypting them only for authorized users. But Liquid Machines’ system is designed for use within big enterprises and their business partners, whereas SiteTrust extends data protection to all of a company’s Web customers.

One of the top three online brokerage firms—Verdasys can’t yet divulge which one, though it says the firm has 6.3 million customers—has signed up as the first SiteTrust licensee. The firm won’t force its customers to download the SiteTrust software in order to keep accessing their online accounts, but it will probably offer them incentives to drive adoption, Ledingham says.

While SiteTrust marks the first time that the company will be putting software on consumers’ machines, conceiving the service wasn’t a huge leap. “The reality is that a lot of enterprise machines are compromised as well by malware, and a lot of our customers were seeing the anti-virus products decline in efficacy, so we were already having to develop this technology to protect data within the enterprise,” Ledingham says. “It was a logical extension to monetize that by selling it to companies who want to protect their consumer base.”

Pages: Page 1, Page 2

Author: Wade Roush

Between 2007 and 2014, I was a staff editor for Xconomy in Boston and San Francisco. Since 2008 I've been writing a weekly opinion/review column called VOX: The Voice of Xperience. (From 2008 to 2013 the column was known as World Wide Wade.) I've been writing about science and technology professionally since 1994. Before joining Xconomy in 2007, I was a staff member at MIT’s Technology Review from 2001 to 2006, serving as senior editor, San Francisco bureau chief, and executive editor of TechnologyReview.com. Before that, I was the Boston bureau reporter for Science, managing editor of supercomputing publications at NASA Ames Research Center, and Web editor at e-book pioneer NuvoMedia. I have a B.A. in the history of science from Harvard College and a PhD in the history and social study of science and technology from MIT. I've published articles in Science, Technology Review, IEEE Spectrum, Encyclopaedia Brittanica, Technology and Culture, Alaska Airlines Magazine, and World Business, and I've been a guest of NPR, CNN, CNBC, NECN, WGBH and the PBS NewsHour. I'm a frequent conference participant and enjoy opportunities to moderate panel discussions and on-stage chats. My personal site: waderoush.com My social media coordinates: Twitter: @wroush Facebook: facebook.com/wade.roush LinkedIn: linkedin.com/in/waderoush Google+ : google.com/+WadeRoush YouTube: youtube.com/wroush1967 Flickr: flickr.com/photos/wroush/ Pinterest: pinterest.com/waderoush/