CRYPTOCard Launches AuthEngine, a Two-Factor Authentication SDK That is Used to Build Token Management and Authentication Services into Any Application or Networking Environment, at RSA Conference

Business Wire, Feb 1, 2007

AuthEngine Can Be Implemented Inside Existing Applications, Websites, Databases, And Directories Eliminating The Need To License, Install, or Manage An Authentication Server

OTTAWA, Ontario & LONDON -- CRYPTOCard (www.cryptocard.com) launches AuthEngine, a solution that embeds token-based, two-factor authentication in any custom application or environment, including websites, databases, and directories, at the RSA Conference. AuthEngine provides application developers with complete control over the authentication system provisioning, enforcement, and workflow entirely within the custom application. This is a major improvement in productivity and cost over traditional APIs that simply build a bridge between the custom application and a stand-alone authentication server. With AuthEngine there is never a need to purchase, install, and support a separate authentication server.

AuthEngine will appeal to:

* Web application developers, especially those building sophisticated workflow, subscription services and on-line self-service applications or using custom directories and databases. With AuthEngine, token-based authentication becomes "just another method"

* ISVs that want to improve their competitive edge and create additional revenue streams by adding, managing, or even licensing token authentication from within their product offering

* High Performance Computing environments that want to enforce token authentication in conjunction with Kerberos

"AuthEngine makes sense as it enables organizations [software vendors, application developers, etc.] to add best-of-breed authentication technology from a recognized market leader," said Andrew Kellett, Senior Research Analyst, Butler Group. "Many organizations simply don't have the expertise required to develop an authentication solution, and so see it as an area where there is an obvious business advantage to partnering with a specialist."

Digician, a provider of specialized web applications for the insurance industry, was an early user of AuthEngine. Digician's applications deal with critical, sensitive information, so security was of extreme importance.

"AuthEngine strengthens Digician's authentication process, and is the most developer-friendly of all applications out there," commented Julius Ang, CEO, Digician.

Another early AuthEngine adopter is Clinivate. Clinivate's Clinitrak[R] provides behavioral health providers, clinicians, and managers with secure real-time online billing, productivity, and outcome tracking capabilities. Clinivate understood that it was critical that confidential medical records could not be accessed by an unauthorized user.

"AuthEngine provided by far the simplest and most cost-effective method for Clinivate to integrate two-factor authentication as part of its Clinitrak[R] solution and further compliance with HIPAA," said Steve Terui, VP Development, Clinivate. "Everything Clinivate required came in one piece which made integrating two-factor authentication a simple process," Terui continued. "Clinivate is proud that AuthEngine has enabled it to provide behavioral health providers with an electronic medical records and billing solution that includes two-factor authentication."

"The whole point of AuthEngine is to recognize that most people already have 95% of the components they need for strong authentication in place," said Bill LaHam, V.P., Products & Business Development, CRYPTOCard, Inc. "AuthEngine simply provides the remaining 5% and ironically requires less coding than building a bridge to a stand-alone authentication server," LaHam continued. "AuthEngine isn't for everybody, and if simply enforcing authentication at a VPN gateway or RADIUS authentication is adequate, then a stand-alone solution such as CRYPTO-Server may be a better choice, but for those that control their applications or want provisioning and workflow processes that revolve around the business, not the tokens or authentication server, AuthEngine is hard to beat."

AuthEngine is available to qualified developers and institutions. For more information, please visit CRYPTOCard at the RSA Conference in Booth 2705, visit www.cryptocard.com, or contact info@cryptocard.com.

About CRYPTOCard, Inc.

CRYPTOCard is a leader and innovator in the Network Authentication Industry. Its multi-awarded Two-Factor Authentication options include both a server based or 'product' solution (CRYPTO-Shield) and a Managed Authentication Service (CRYPTO-MAS). The combination allows organizations of any size and means to adopt a strong authentication policy. CRYPTOCard is unique in the industry in its commitment to ensuring its products/services work with any common network architecture including OS compatibility (Microsoft (Nasdaq: MSFT) Windows, Linux, Mac OS X), web-server flexibility (IIS, Apache), and database options (Active Directory, LDAP, Open Directory, etc). Add to that the outstanding 'out-of-the-box' interoperability with many top industry network solutions including Citrix, Checkpoint (Nasdaq: CHKP), and Cisco (Nasdaq: CSCO), and you begin to see how CRYPTOCard has grown since its origin in 1989 to become a thriving enterprise doing business in more than 70 countries.