CA Technologies has announced that it's offering RSA SecurID customers a one-for-one swap: RSA SecurID tokens for CA ArcotID software credentials.
CA Technologies will provide a three-year enterprise licence for each ArcotID credential, as well as a licence for its WebFort authentication server. According to CA, the only cost to the customer to switch would be maintenance. The offer is running until 30 September 2011.
CA said that deploying software credentials is simpler than hardware tokens, because they don't have to be manufactured and physically distributed to the customer site and enable organisations to reset them in the case of a security breach.
"Hardware tokens are a security mechanism whose time has expired. The inconvenience of carrying an additional key fob or device for today's increasingly mobile workforce is not practical, and the difficulty of remediation in case of a hardware token breach can be overwhelming," said Vic Mankotia, security vice president, in a statement.
CA is jumping into the breach following RSA's admission earlier this month that hackers had stolen information on its SecurID tokens, which it admitted could potentially be used to reduce the effectiveness of two-factor authentication implementations.
The company has been slammed by security boffin Dan Kaminsky for not disclosing enough information to customers on what exactly hackers could do with the information they had gleaned.