Duo Security Recognized as a Visionary in 2014 Magic Quadrant
Gartner has named Duo Security a Visionary in its Magic Quadrant for User Authentication, published December 2014. As the world’s leading information technology research firm, Gartner conducts yearly, independent research to provide in-depth analyses of tech vendors today, reporting their competitive research in graphical reports called the Gartner Magic Quadrant.
Duo Security was one of the first vendors to provide one of the best implementations of out-of-band authentication for the market. Nearly three years ago, we released Duo Push, a convenient way for users to authenticate using a mobile app on their smartphones. Leveraging users’ familiarity with push notifications, our app allows users log in to their services with the tap of one button.
Designing for Security
Our out-of-band authentication solution is also the most secure answer to reports of OTP bypasses. These man-in-the-browser attacks are nothing new, but they do make a strong case for using Duo Push, which protects against attackers’ attempts to steal a one-time password. Without access to the physical device, attackers won’t be able to fraudulently authenticate as the user.
Security and trust are important to us - even if an attacker accessed our database, they’d still be unable to forge successful fraudulent authentication responses.
Instead of using the traditional shared secret model of OTP-based two-factor, we use asymmetric cryptography to sign and verify communications between our servers and users’ smartphones. Learn more about how we’ve built security into our two-factor solution.
In addition to ease of usability, our solution’s APIs give administrators the ability to integrate two-factor authentication with their custom applications. We recently released a new edition featuring our APIs, learn more about it in Duo’s API Edition.
FIDO U2F: New Standard in Two Factor Security
We’re also at the forefront of providing the latest standardized two-factor authentication for businesses and consumers, as we recently joined Google, Yubico and others in the FIDO (Fast IDentity Online) Alliance to provide Universal 2nd Factor (U2F).
With U2F, you can log into your accounts with a USB device after you set it up with Duo Security’s U2F server. Then insert it into your USB drive and tap it once to log in.
As a more secure token-based authentication method, U2F leverages public-key cryptography, protecting private keys with a tamper-resistant hardware component known as a secure element (SE). Learn more about Duo Security U2F.
We’re pleased to be named as a Visionary in the authentication industry. Here’s to another great year!
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
*Gartner “Magic Quadrant for User Authentication” by Ant Allan, Eric Ahlm, and Anmol Singh, December 4, 2014.