As many of you know, SugarCRM has run the App of the Month program for the past several years. Going forward, SugarOutfitters and SugarCRM will be working together to feature the best apps every month. We're really excited to work with SugarCRM on this program as finding the best apps in the SugarCRM ecosystem is already a big part of what we do!
Without further ado, DetectID Cloud for SugarCRM is the June 2013 SugarCRM App of the Month. The DetectID Cloud for SugarCRM helps ensure your SugarCRM data is safe and secure. They will give a live demo at the SugarCRM Community Webinar on June 26th at 11am EDT. To try out DetectID Cloud for SugarCRM, simply start a free trial today.
Your name, title and brief bio?
Daniel Ingevaldson, CTO of Easy Solutions, Inc. I'm responsible for the overall technology strategy for Easy Solutions.
When you designed and built this app, what problems were you looking to solve for SugarCRM users and how does the DetectID Cloud for SugarCRM solve those problems?
Easy Solutions has been a market-leader in building security and anti-fraud technology for banks and other financial institutions for many years. We have helped our clients protect their systems and account holders from constant and deliberate attacks from highly skilled adversaries. One primary technology that banks rely upon to protect their users is "multi-factor authentication" (MFA), which basically means that users need something beyond a simple password to access their accounts. The use of MFA protects users from simple "phishing" attacks which are designed to trick users into supplying their username and password.
These problems don't just affect big banks. There were almost 1,500 breaches of customer data publicly reported last year, and probably hundreds more that went unreported. In each of these events, personal information, account names, emails and/or passwords were stolen. Studies show that most users commonly reuse the same password for nearly every web site registration and many users are registered for hundreds. With the constant drumbeat of high-profile breaches, the circulation of hundreds of thousands of usernames and passwords in the online underground and the pervasive problem of extensive password reuse, nearly all cloud-based data is at risk.
Our goal with SugarCRM is to provide enabling technology for easy-to-use MFA for SugarCRM. The same technology that supports our financial services customers has been leveraged to provide SugarCRM users the extra security needed, without the extra hassle. With DetectID Cloud for SugarCRM, even if the user's password has been stolen, it is not possible to access SugarCRM data.
What unique or interesting ways does your product make it easy for users to use?
DetectID Cloud for SugarCRM supports two types of MFA. The first is "device authentication", which detects and fingerprints the user's computer during the first login. After the device is enrolled and associated with a specific user account, every login thereafter will trigger a check to see if the enrolled computer is behind the login. If not, it will not be possible to login. The second approach is called "mobile one-time-password", or mobile OTP. Mobile OTP allows users to login normally with a username or password and to enter a one-time-password from the Easy Solutions DetectID OTP iPhone or Android app. Mobile OTP turns any mobile device into a second factor. In both cases, if a password is stolen, account access is not allowed without the second factor.
What attracted you to being a part of the SugarCRM ecosystem?
The ecosystem. SugarCRM has a fantastic community of integrators, hosting providers and app developers. SugarCRM customers are attracted to the platform because it gives them the power to tune their instance to their specific requirements. Easy Solutions is interested in providing MFA technology to all enterprise applications because they are all equally vulnerable to these basic attack types.
What is your vision for DetectID Cloud for SugarCRM? What can we expect to see from DetectID in the future?
DetectID Cloud is built upon robust enterprise-class technology that supports authentication for millions of online users. Our vision for DetectID Cloud is to continue to expand the capabilities of the solution to provide customers with additional types of MFA and additional flexibility to deploy the right combination and security and convenience that is right for their users.