Northumbrian Water has gone for SecurEnvoy's SecurAccess to provide tokenless two-factor authentication for its remote workforce and contractors.
Anthony Smith, IS security co-coordinator, explains that NWL was looking for a replacement to its token system, and specifically something that could offer flexibility, cost reduction and improved efficiency.
He explains that SecurAccess uses SMS technology to turns mobile phones into authentication tokens – meaning that each NWL employee's existing Microsoft password acts as the first factor, with a passcode sent to the user's mobile phone as the second.
Unlike its legacy hardware tokens that previously took days to deploy, NWL can quickly roll out SecurAccess to its remote workers and contractors, he says, without the pain, cost or environmental impact created by legacy hardware distribution.
"Tokenless two-factor authentication means we can switch on users in seconds, rather than relying on postal systems to deliver physical tokens, often arriving days later," states Smith.
"A further inconvenience was trying to get tokens returned by contractors when projects ended," he adds. "Each one costs money so it gets expensive if they're just written off... That the majority of our users prefer the SMS tokens is an added bonus making the whole program effortless."
And he points out that NWL can also switch on rock-solid two-factor authentication for any number of users – for example, in the case of an emergency, such as freezing conditions preventing access to its offices.
Says Smith: "Along with the rest of the country, the last two winters meant some of our employees struggled to get in to work and, instead, needed to work from home... SecurAccess means, if the mercury plummets again, it's a quick and simple process for us to switch on our employees."