Redwood City, CA, July 10, 2006 – Authernative, Inc., the developer of innovative user authentication and identity management technologies, announced today that the United States Patent and Trademark Office has granted the company its patent for a user authentication method.

The newly issued patent number 7,073,067 entitled “Authentication System and Method Based Upon Random Partial Digitized Path Recognition” describes a “what user knows”-based authentication method which overcomes two major deficiencies of passwords: memorization difficulties and low security. To reduce memorization pressure and significantly improve ease of use, the patented technology utilizes a graphical shared secret on a virtual reference grid. Graphical shared secrets facilitate easier recollection as opposed to remembering textual passwords. To enhance security, the authentication server never challenges the user to provide her full shared secret, but instead requests a session-only random subset of the graphical shared secret. This one-time authentication challenge initiates a one time authentication response that cannot be reused if intercepted by an intruder.

This technology protects users’ entered credentials against phishing, key logging, brute force, Trojan horse and other spyware attacks. Moreover, the graphical shared secret’s combinatorial capacity on the reference grid provides high security against guessing attacks.

The authentication method can be used as the single user authentication factor in any client-server networked environment embracing computers, mobile devices, or other terminals including VoIP, Point-of-Sale, or ATM. It offers the high security found in hardware-based authenticators while preserving the cost-effective electronic mass deployment and the ease of use, typical of passwords. Alternatively, it can be used in combination with a legacy password or another authentication factor, creating a two-factor “strong” user authentication solution.

The patented technology is incorporated as a part of Authernative™ AuthGuard® authentication product. AuthGuard® is a browser-based authentication console providing a range of innovative multi-factor, multi-channel, and mutual authentication technologies to best address the scalable security, usability, and low total cost of ownership requirements.

Authernative’s granted patent solidifies the company’s ability to provide secure and cost effective user authentication. With identity theft, cyber crime, and data breaches escalating to an all time high, enterprises, online service providers, and consumers can benefit from AuthGuard® authentication product to secure access to company networks, extranets, portals, applications, and data.

About Authernative:

Authernative develops, markets, and sells innovative patent-pending software security solutions offering comprehensive user identity and access management (I&AM) capabilities over electronic networks including strong authentication, authorization, administration, and auditing (AAAA). The company’s products are used to prevent unauthorized access to confidential data, identity theft, and financial loss. They allow businesses to lower the cost of providing, deploying, and managing strong user authentication and authorization capabilities for enabling e-commerce, regulatory compliance, secure business communications and transactions with customers, suppliers, and employees.