Blog

News and articles

4 Reasons To Implement Multi-Factor Authentication (3 min read)

06 May, 2020 by Michael Tanaka, CCO

Last week the National Cyber Security Centre (NCSC) released details of their latest advice to individuals and organisations as part of their Cyber Aware campaign – timed to support the increased use of remote working and simply ‘living’ online. It was also an opportunity to go back to basics and remind organisations and individuals how we should all be operating to minimise risk. https://www.ncsc.gov.uk/cyberaware/home Point 4 of the advice focuses on the use of 2 factor or multi-factor authentication.…

The Perils of Trust-Me Authentication Part 2 of 2 (5 mins read)

27 Apr, 2020 by Dr Michael Scott

Earlier in the month our Chief Crypto Officer, Dr Michael Scott, shared his thoughts on the Trust Me model. Today he highlights an example where this works and considers its draw backs. Passwords are past their sell by date, we know that, but what is the alternative. Don’t be fooled into using personal data as your password replacement. It won’t end well. Many authentication companies have sought to promote their solution as passwordless.…

The Power of Zoom (2 min read)

16 Apr, 2020 by Michael Tanaka, CCO

As the Covid-19 pandemic continues, the technological revolution only accelerates as workplaces across the globe go digital and the importance of online security increases in parallel. Whether it’s protecting email accounts or company data on your laptop – how we protect our data couldn’t be more critical as we find ourselves living in a digital lock-down world. As face-to-face meetings are replaced by virtual conferences, Zoom is one app that has helped to revolutionise the way we ensure ‘business as usual’.…

The Perils of Trust-Me Authentication Part 1 of 2 (3 mins read)

10 Apr, 2020 by Dr Michael Scott

Last month our Crypto chief, Doctor Michael Scott, compared FIDO to our MFA, zero knowledge proof verification system: MIRACL Trust, culminating in the publication of a new white paper - https://miracl.com/blog/fido-a-noble-attempt-but-alternatives-required/ - Today, in part one of a two part series, he challenges the ‘Trust-me’ concept and highlights it’s dangers and the vulnerability it brings to the user. Authentication is quite a crowded space with multiple Username/Password replacement proposals out there.…

Press Release: MIRACL Partnership with ForgeRock

07 Apr, 2020 by MIRACL Technologies Ltd

MIRACL BRINGS POWERFUL ZERO KNOWLEDGE PROOF AUTHENTICATION OFFERING TO THE FORGEROCK IDENTITY PLAFROM WITH NEW PARTNERSHIP MIRACL today announces that they have partnered with ForgeRock, the leading provider in digital identity, to bring MIRACL’s Zero Knowledge Proof authentication technology to the ForgeRock Identity Platform. Supporting ForgeRock’s drive to transform the way organisations approach identity and access management, this strategic alliance will provide platform users the opportunity to access MIRACL Trust ® solutions via a pre-built integration.…

MIRACL announces membership of OIX (2 min read)

01 Apr, 2020 by Michael Tanaka, CCO

MIRACL has become a member of the Open Identity Exchange – OIX - to further its position as an influential provider of simply secure authentication within online identity processes. Launching with a successful presentation to members last week, the MIRACL membership will provide the association and its members with valuable insight into the future of multi-factor authentication with zero knowledge proof. CCO at MIRACL, Michael Tanaka, who presented to OIX members, comments: “Having worked with Experian for a number years it was inspiring to find out about the positive influence OIX has on the authentication industry.…

FIDO - that dog won't hunt

26 Mar, 2020 by Dr Michael Scott

FIDO is an authentication technology based on the mathematics of public key cryptography that emerged in the 1970s and the 1980s. It is promoted by a large industry backed consortium as the two-factor successor to the username/password mechanism, which is well understood as being no longer fit for purpose. But intrinsic to FIDO is the requirement for both client-side secure hardware and a vulnerable server-side credentials database. Here we propose a better solution which would ditch both of these requirements by separating the registration and authentication processes, and which provides true multi-factor authentication using more modern ideas that have emerged from cryptographic research.…

FIDO vs M-PIN and the credential database (4 min read)

24 Mar, 2020 by Dr Michael Scott

If passwords are becoming redundant, what’s the solution? FIDO is an alternative approach, but comes with limitations. Using pairing-based cryptography to allow smart flexibility in the ‘secrets’ needed to enable authentication, MIRACL Trust ID takes security one step further. In the final blog of this three part series, MIRACL’s leading crypto expert, Dr Michael Scott, explains how this MIRACL technology works and why it’s the future. FIDO is a well-established industry solution to client authentication.…

Working from Home – Securely (4 min read)

20 Mar, 2020 by Michael Tanaka, CCO

Since February 2020 the National Fraud Intelligence Bureau (NFIB) alone has witnessed 21 types of online line fraud where Coronavirus was mentioned – with victims collectively suffering over £800,000 of losses. Sadly, whenever there is a crisis, online exploitation invariably follows. As this unprecedented situation evolves, online threats are only going to increase. And, with thousands of workers moving out of their offices and into a ‘working from home’ environment, now is the time to re-enforce the importance of secure remote working.…

Is the password history? (5 min read)

17 Mar, 2020 by Dr Michael Scott

There is no question that passwords expose users to attack and replacing them is the goal. FIDO is all about Fast IDentity Online – secure authentication without the need for passwords. But FIDO has some obvious vulnerabilities which need to be considered and are covered in more detail in part 3 of this series of blogs. Here, in part two of our 3 part series, our Chief Crypto Officer, Dr Michael Scott, highlights the outdated practice of ‘passwords’ and how they are simply not fit-for-purpose in today’s online world…

When two-factor authentication is not enough (4 min read)

09 Mar, 2020 by Dr Michael Scott

Our resident crypto expert, Dr Michael Scott, explains the security principles of two-factor authentication and how attackers can step outside of their expected behaviour to bypass the security altogether. This is part one of a three part series on multi-factor authentication culminating with a critique of the FIDO authentication framework. There is no confirmed case of anyone ever escaping from Alcatraz. Which is quite remarkable as it was open for many decades and housed thousands of desperate characters.…

DECODE: Our Data, Our Future

04 Nov, 2019 by MIRACL Technologies Ltd

Radical Tech for a Democratic Digital Society 5th & 6th November 2019, La Centrale, Nuvola Lavazza, Turin. MIRACL exhibits at influential European Tech consortium (3 min read) At MIRACL we understand the importance of data protection. That’s why our authentication and digital signing services are based on the MIRACL Core Library and a Zero Knowledge Proof (ZKP) protocol. No personal data is ever stored or transmitted within our single step, highly secure, multi-factor, PIN based solutions.…