VeriSign reaches out to mobile developers

VIP brings two-factor authentication to mobile apps

Online security firm VeriSign today made two new announcements, designed to encourage developer uptake of its authentication platform, and to help firms manage their SSL certificates more easily.

The Mobile Developer Test Drive Program is a bundle of SDKs, applications and sample code designed to give developers of iPhone and J2ME applications the means to integrate the VeriSign Identity Protection (VIP) authentication system into their mobile apps.

VIP is a two-factor authentication system, which online retailers and service providers can offer to their customers via their web site to enhance the security of transactions. The system requires the customer to key in a passcode, which could be generated by a key fob or a text message sent to a user's phone.

Developers can sign up to the program now and the tools cover areas including application design, provisioning and validation.

By incorporating VIP into their applications, mobile developers could enhance the reputation of their software and possibly boost adoption, according to VeriSign business development director Phil D'Angio.

"Developers can leverage the tools we've developed to make their applications more secure," he explained. "The Mobile SDK gives you the kit to build security credentials into the application and the ability to test those credentials with the VIP service in a real world scenario, at no cost."

Also today, VeriSign announced a new module for its Managed PKI for SSL service, designed to help IT directors manage their SSL certificates in complex environments that could involve multiple Certificate Authorities and deployments across multiple departments.

The VeriSign Certificate Discovery module requires security administrators to log in via a link in their Managed PKI for SSL account, enter the IP address range they want scanned, and it will return a report of all their certificates with details of expiration dates, said VeriSign.