Enabling Compliance with Password Policies
Mandylion Research Labs
 
  Main | Products | Purchase | Regulatory Compliance | Company Info | News

 
Welcome to our news section. This archive contains articles that mention our company, products or technology as well as noteworthy articles on the authentication industry
Latest News

Federal Computer Week Review
Leading Federal and State IT Publication reviews Mandylion’s next generation token and states its “ready for enterprise deployment”
more info

Wall Street Journal Review
WSJ article provides overview of how corporations are coping with password overload and favorably describes the Mandylion Token as the hardware token solution. more info

Military Information Technology Magazine
Respected Military Journal Reviews DoD program which matured Mandylion token technology. more info

Civilian Agencies Deploy
The Commerce Department’s National Weather Service, Treasury’s Bureau of Alcohol, Tobacco, Firearms & Explosives and the National Institutes of Health Deploy tokens. more info

DoD Funds Development
Mandylion Labs technology was matured and showcased as part of a 3 year Advance Concept Technology Development and Demonstration Project funded by DoD Advanced Systems and Concepts. more info

How Strong Are Your Passwords? Security experts cite weak passwords as one of the most critical security threats to your infrastructure. But just what is a strong password? Are their tools that can help me audit and quantify my risk? more info
Vienna, Va. (August, 2003): 
Mandylion Research Labs, LLC today announced that its Personal Password Manager token, the ebplite was tested and evaluated at the Military’s Joint Warrior Interoperability Demonstration (JWID) during the month of June, 2003. The objective achieved in including the Mandylion technology in this military exercise was to “demonstrate that strong password policy can be effectively deployed in an operational environment” by empowering the warfighter with a simple tool which aids them in their ability to generate and manage cryptographically strong passcodes.

About JWID
JWID is a Chairman of the Joint Chiefs of Staff annual event with the international community that investigates command and control, computers, and communications (C4) solutions to near-term coalition interoperability challenges and assesses critical, worldwide interoperability testing of the Defense Collaboration Tool Suite (DCTS). Since 9/11, JWID has also taken on the role of testing certain critical multinational capabilities in the Global War on Terrorism.
JWID focuses on “Coalition Interoperability, the 21st Century Warfighter’s Environment” states a DoD briefing about JWID. The event provides an opportunity for government, private industry, and coalition partners to demonstrate new and emerging technologies in a simulated warfare environment.

The U.S. Pacific Command hosted JWID ’03. The Defense Information System Agency's (DISA) Advanced Information Technology Services Joint Program Office (AITS-JPO) serves as the permanent operational agency for JWID. “I am very much aware of the importance of interoperability among diverse systems, separate military services, and, most importantly, among allied nations,” said Brig. Gen. Carroll F. Pollett, DISA Principal Director for Operations and Commander, DISA Global Operations. “The coalition interoperability emphasis in JWID is absolutely essential to our continued success in coalition operations, whether those operations are responding to natural disasters or finding terrorists hiding in caves. “Making our communications systems work together to flow critical information is not an easy job, and it seems to get tougher every day as new technologies and applications are deployed and new demands are put on our systems,” General Pollett added. “Our mutual success, however, depends on interoperability, our ability to build and sustain our diverse networks, and our ability to share information.”
“One of our key operating principles is that interoperability should be built in, not bolted on,” stated General Pollett. “JWID will lead the way to more effective operations, like a road map. We all need a road map, because interoperability should not be an afterthought, …something we try to incorporate after a system is fielded.” The Mandylion token allowed the warfighters to quickly and securely access multiple password controlled databases, applications and systems developed and shared by each of the Coalition countries during the exercise.

The month long warfighter exercises were successfully conducted at four U.S. sites and at four sites in Coalition countries. The U.S. sites were: Camp Smith, Hawaii (USPACOM); the Naval Surface Warfare Center, Dahlgren, VA(Marine Corps and Army); SPAWAR Systems Center, San Diego, CA(Navy); Electronic Systems Center, Hanscom AFB, MA.(Air Force). Coalition country sites included Australia, Canada, New Zealand and the United Kingdom. In addition, USPACOM invited Japan, Singapore, the Republic of Korea and Thailand to participate as observers at PACOM HQ, Camp Smith.

JWID ’03 assessed more than 46 Coalition Interoperability Trials (CITs) at the 8 global operating sites. The CITs seek to demonstrate a capability to improve or even establish a capability in support of one or more of the objectives. Mandylion’s participation was part of the Coalition Information Assurance Common Operational Picture (C-IA COP) CIT.

The objective achieved in including Mandylion technology in the program was to “demonstrate that strong password policy can be effectively deployed in an operational environment by empowering the user with a simple tool which aids them in their ability to generate and manage cryptographically strong passcodes. Overall, the Coalition Information Assurance Common Operational Picture (C-IA COP) CIT successfully demonstrated a significant reduction in damaging cyber warfare attacks by combining the intrusion detection and analysis forces of Joint, Combined, and Coalition commands.

The Mandylion token utilized during the exercise was one that was modified for DoD use in 2003 under a DISA Advanced Concept Technology Demonstration Program.

Rear Admiral Nancy E. Brown, Vice Director, Command, Control, Communications and Computer Systems (J6), Joint Staff, stated that interoperability is essential to allow a vision of information superiority across the spectrum of operations to evolve and grow. “Our combined operations in Iraq and other worldwide locations will be using JWID-developed products like the Defense Collaboration Tool Suite (DCTS),” she said.

For more information on the JWID program, visit their web site at:
www.dtais.mod.uk/cwid.

About the Product
Mandylion Labs’ developed and patented this innovative and inexpensive password manager called the ebplite in a three year development effort. It is a key chain sized device that helps any user instantly create cryptographically strong passwords that immediately work with any web site, login or system. A key feature is that the device provides for the secure and convenient storage of a user’s passwords along with their automatic update. It was designed to do away with the inherent weaknesses traditionally associated with the use of passwords; namely the individual being asked to create, remember and regularly change their passwords. Passwords created with the device thwart all known brute force and dictionary type hacking attacks.

It is more than a smart card. It works instantly with any login, any system and requires no client or host software or apparatus. There is nothing to install.

Originally developed for U.S. military and national security applications, more advanced versions of the device have the ability to embed user identifying watermarks within the passwords generated. The biometric version of the unit can asymmetrically bioauthenticate the individual logging in to an ordinary web site. To aid in the purely random number generation, algorithms embedded within the unit’s firmware continuously sense and take input from the user's random and unique interaction with the device.

While other information security products generally address only specific threats, Mandylion’s products improve the entire baseline level of data security for the enterprise. Further, with studies that show that now half of all help desk support calls are for password resets, the device has become a tool of cost containment for runaway tech support costs.

The product retails for approximately $69.95 with corporate and Government discounts bringing its price in the mid $30 dollar range U.S. For a complete and current list of companies which offer the product, please visit our web site at www.mandylionlabs.com.

About Gartner
Gartner, Inc. is a research and advisory firm that helps more than 10,500 clients understand technology and drive business growth. Gartner's businesses consist of Gartner Research, Gartner Consulting, Gartner Measurement and Gartner Events. Founded in 1979, Gartner is headquartered in Stamford, Connecticut, and has 4,000 associates, including 1,200 research analysts and consultants, in more than 90 locations worldwide. For more information, visit www.gartner.com. The Gartner Symposium/Itxpo event is the IT industry's largest conference. Hosted this year in Orlando, this event features more than 200 sessions led by Gartner analysts.

About Mandylion Labs
The idea was inspired. Yet so simple. Rather than search to replace the use of passwords, just make them more convenient to use while removing the vulnerabilities associated with them . In 1998, Mandylion Labs originated this simple and intuitive concept toward password management. Today, we're a recognized as the leading innovator in access control utilizing durable password techniques. Government, Corporations and ISPs use our solutions to reduce the cost and complexity of managing their access control systems in the Window NT and Unix and Linux environments while increasing the enterprise's entire baseline of data security. With a web-centric economy pushing along expanding volumes of confidential information which is only separated from the public domain by an easily forgotten or worse, a hackable password, Mandylion’s solutions couldn't have come at a better time.

The apparatus and methods developed by the Company (5 separate patents pending effective 7/99 et al) inexpensively provide computer users with convenience, privacy and security in the management of their web site and LAN/WAN login passwords.

The Company is located in Vienna, Va. Our number is 703 – 628 4284.
Our e-mail address is info@mandylionlabs.com

Back to Press
 
© 1999 - 2006, Mandylion Research Labs, LLC. All rights reserved.