I started building Auth Armor about 2 years ago with the goal to make security easy for both developers and users.- says Shane Miller, the founder of Auth Armor, a company that enables secure password-less login or advanced 2FA (two- factor authentication) by using biometric authentication or a security key without having to type in codes or captcha.
According to Shane, Passwords and 2FA TOTP shared secrets are outdated and insecure. Account take-overs, password theft, and breaches cost billions each year and is getting worse each year. His experience in the payments industry made him realize that the fundamental problem with authentication and security around payment apps and services is something called ‘shared secrets’.
Shane defines shared secrets as a phrase or string of characters that is known by two or more people or ‘things’ such as a server or an app. This is how passwords are made functional. As a user enters the password in the field, the server verifies its authenticity by matching the stored copy of that password in its database. And if it holds true, the user is allowed access. This leaves the server vulnerable and prone to attacks from hackers trying to steal millions of passwords or shared secrets.
Auth Armor solves the problem by adopting a new technology that allows authentication and authorization without having to rely on two-way information exchange such as in the case of shared secrets.
“When making security easy, we also reduce friction for users. And when we reduce friction, we increase adoption. That is a big issue with the existing 2FA today. Look at Twitter, Facebook LinkedIn, Google, etc. You can turn on 2FA for all of these services. Anyone can. But how many do it? Less than 20%. Why? Because it’s a pain in the ass. But if it’s easy, and dare I say even a little fun, then adoption is no problem. It’s all about user experience and ensuring the user does not have to know or understand security. The app and services do it all behind the scene and it just works.”
In short, Auth Armor enables the most advanced security while being very simple and easy to use. Security is hard. Auth Armor makes security so easy to use that you don’t even release all the technical and cryptographic stuff happening under the hood. The best security is the kind you don’t even know is happening, it is just working, says Shane.
Shane Miller is the founder and CEO of Auth Armor, bringing more than 20 years of software development and leadership experience into the security industry. Shane’s career actually started in payments – working at a college bookstore, he modified a Point-of-Sale system to improve functionality. His efforts were so effective, he was hired away by that very company, going on to build a campus e-commerce system and payment gateway. From there, Shane continued his upward trajectory in payment systems and security; Lead Developer for Apollo Group, Lead Software Engineer/Architect/Manager for MagTek, Sr. Payment Endpoint Developer for Total Merchant Services.Recognizing the importance of security, privacy and ease-of-use, Shane has focused on security standards, fraud-prevention, encryption and more. His experience working with industry leaders and organizations has bolstered his passion to develop and build secure solutions. Outside of writing code and creating industry-leading technology, Shane spends his pastime divulging in photography, hiking and traveling.