Overview

Accessing an Internet web site typically means registering for an account and obtaining a UserID and password or an authentication token such as an RSA SecurID.  In the physical world, this is the equivalent of obtaining a store brand credit card for every merchant you do business with.

For employees of a firm, this requires the employee manage individual Ids & Passwords for each site they access on behalf of their employer.  For the employer, the proliferation of these accounts – typically managed by the employee – is a significant risk.  If the employee leaves the firm, the employer has the challenge of 1) identifying all the services the employee used on behalf of the firm and 2) disabling the account at each vendor.  Otherwise, the employee may have access to these accounts after their employment ends.  Depending on the service, that can be a significant risk to the firm that is responsible for the accounts.

To address these issues, Pseudo-NymSM will work with employers to issue reusable authentication ‘cards’ to their employees.  The employer will also manage the termination of those cards after the employee leaves their firm.  Those authentication cards will be reusable across multiple SaaS vendors.  Each time an employee accesses a participating vendor, the vendor will confirm their credential is still valid.  If Yes, access will be granted.  If No, access will be denied.

This approach to managing B2B access to SaaS vendors mimics the way corporate credit cards are managed: these authentication cards will be issued when an employee joins a firm and disabled when they leave.  The card will be reusable across multiple web sites, provide single sign to multiple web sites and combat phishing.  It will be validated at every use so access can be granted or denied based on the owner’s current employment status.