Press Release

RSA Announces Major 2007 Achievements in Consumer Authentication and Online Fraud Protection that Help Customers Accelerate their Businesses

Bedford, Mass. - Tuesday, November 6, 2007

Bedford, Mass., Tuesday, November 6, 2007 - 
  • More than 20 financial institutions signed up for RSA Go IDSM Authentication Service
  • Over 7 billion online financial transactions processed to date by RSA Risk Engine
  • RSA Anti Fraud Command Center celebrates three years of operations – with more than 55,000 online attacks identified so far

RSA, The Security Division of EMC (NYSE: EMC), today highlighted several major accomplishments attained by its Consumer Solutions Group in the first three quarters of 2007. These successes include reaching impressive milestones in the number of online financial transactions processed by RSA’s systems; in customer adoption of the RSA Go IDSM Authentication Service; and in anti-fraud protection.

“RSA is proud to have built one of the most comprehensive suites of solutions in the industry, both for the protection of customers' information and identities and for the mitigation of online fraud,” stated Art Coviello, Executive Vice President of EMC and President at RSA. “Organizations are increasingly looking to RSA to help them realize the full value of their information assets, and to enable the acceleration of their business through customer confidence and robust threat management.”

Momentum for the RSA Go ID Authentication Service
As of September 30, 2007, RSA has signed deals – or begun implementation – with more than 20 financial institutions to implement the RSA Go ID Authentication Service, and tens of thousands of users have received RSA Go ID credentials for everyday use. The RSA Go ID Authentication Service is designed to allow users to access multiple online accounts with a single authenticator, without requiring trust relationships between account providers. The service is engineered to manage the entire authentication lifecycle including fulfillment, activation and authentication. Multiple authenticators and multiple types of authenticators can also be used to access one account.

The RSA Go ID Authentication Service is engineered to enable account providers to offer their customers both hardware tokens and the RSA Go ID Toolbar based on customer behavior, lifestyle and needs. Indeed, six of the institutions using the RSA Go ID service have deployed it in its toolbar format. The toolbar is designed to eliminate any hardware and token fulfillment costs as well as inventory management and lead times. In addition, the RSA Go ID Toolbar  is engineered to provide an extra layer of defense against phishing, pharming and man-in-the-middle attacks due to its list of trusted sites.

The RSA Go ID Authentication Service is designed to either act as the primary authentication service or to work in conjunction with other products such as RSA® Risk-Based Authentication.

Christopher Young, Vice President and General Manager of the Identity and Access Assurance Group at RSA, commented: “Following a year of racing against the clock for US financial institutions to comply with the FFIEC guidance, organizations in the sector remain impressively alert to an ever-shifting fraud landscape and to the need to maintain customer confidence in the viability of the Internet as a channel for business.”

Billions of Online Financial Transactions Processed
As of September 30, 2007, the powerful RSA® Risk Engine had processed more than seven billion online transactions. Over recent months the rate of processed transactions has accelerated sharply, through the addition of new customers and end-users, and with financial institutions logging more activities as they seek to offer greater protection. RSA expects that it will shortly be handling more than one billion transactions every month.

As the core of the RSA® Adaptive Authentication and RSA® Transaction Monitoring solutions for remote channel fraud, the sophisticated risk engine is designed to analyze each transaction based on a multitude of parameters and sources, such as IP geo-location, device ID, ANI transaction amount and data from the RSA eFraudNetworkTM community. Once a risk score has been generated, each transaction is either allowed to continue without challenge, or appropriate action – such as logging, or additional authentication if necessary – is invoked according to the specific system configuration. As measured by major clients who share full fraud data with RSA, the RSA Risk Engine has consistently detected 75%-95% of fraud in its various deployments over the past three years.

RSA® Anti-Fraud Command Center Anniversary
The 24x7x365 RSA® Anti Fraud Command Center (AFCC) celebrated its third anniversary this year. The AFCC has become one of the industry’s most effective and experienced resources for dealing with phishing, pharming, Trojans and additional types of online fraud attacks. Since its inception in 2004, the AFCC’s more than 80 fraud analysts have worked with more than 5,300 ISPs, registrars and other hosting entities to help shut down more than 55,000 attacks – including more than 29,000 in the first three quarters of 2007.

 

About EMC

RSA, The Security Division of EMC, is the premier provider of security solutions for business acceleration, helping the world's leading organizations succeed by solving their most complex and sensitive security challenges. RSA's information-centric approach to security guards the integrity and confidentiality of information throughout its lifecycle - no matter where it moves, who accesses it or how it is used.

RSA offers industry-leading solutions in identity assurance & access control, encryption & key management, compliance & security information management and fraud protection. These solutions bring trust to millions of user identities, the transactions that they perform, and the data that is generated. For more information, please visit www.RSA.com and www.EMC.com.

Press Contacts

Sandra Heikkinen
OutCast Communications
212- 905-6043
sandra@outcast.com

For more on EMC news, events, and recent media coverage visit the news section of EMC.com. Note to editors: For further information about this release contact EMC Public Relations at pr@emc.com

RSA, Go ID and eFraud Network are either registered trademarks or trademarks or servicemarks of RSA Security Inc. in the United States and/or other countries. EMC is a registered trademark of EMC Corporation. All other products and/or services referenced are trademarks of their respective companies.

This release contains "forward-looking statements" as defined under the Federal Securities Laws. Actual results could differ materially from those projected in the forward-looking statements as a result of certain risk factors, including but not limited to: (i) adverse changes in general economic or market conditions; (ii) delays or reductions in information technology spending; (iii) risks associated with acquisitions and investments, including the challenges and costs of integration, restructuring and achieving anticipated synergies; (iv) competitive factors, including but not limited to pricing pressures and new product introductions; (v) the relative and varying rates of product price and component cost declines and the volume and mixture of product and services revenues; (vi) component and product quality and availability; (vii) the transition to new products, the uncertainty of customer acceptance of new product offerings and rapid technological and market change; (viii) insufficient, excess or obsolete inventory; (ix) war or acts of terrorism; (x) the ability to attract and retain highly qualified employees; (xi) fluctuating currency exchange rates; and (xii) other one-time events and other important factors disclosed previously and from time to time in the filings of EMC Corporation, the parent corporation of RSA Security Inc., with the U.S. Securities and Exchange Commission. RSA and EMC disclaim any obligation to update any such forward-looking statements after the date of this release.

Notes: