Credential theft schemes have rendered username and password combinations insufficient to ensure identity integrity. Image-recognition site keys looked promising, until studies showed you can't rely on user alertness to recognize forged Web sites. Hardware is an option, but administration and upkeep can be impractical for large user bases. Each measure has weaknesses that Tricerion eliminates with strong mutual authentication. Here's how:

• User passwords are a series of several pictures from an unlimited number of images, not being limited to letters and numbers.
• At every login, each user sees a personalized keypad containing a unique, unchanging, and randomly shuffled collection of 12 pictures.
• The user verifies they have the correct keypad, and then clicks on their password in the correct order.
• If a keylogger is recording their clicks, the hacker can't tell which images the user is clicking.
• If a phishing or man-in-the-middle attack attempts to present an imposter keypad, the odds are astronomically against the chance it will contain the user's unique set of 12 images.
• If the user isn't alert enough to notice the imposter, they'll be unable to logon because their password pictures won't be available.

The bottom line: With Tricerion SafeEnterprise Platform, your service and your user will recognize one another, or access won't happen.