Download this Info (pdf)

Why Does Your Company need bioLock?

Because protecting an SAP USER Profile
with insecure passwords is not good enough
and it is critical to protect Data on the Data Level!  

bioLock is the only SAP certified technology that can protect data on the data level with biometrics
and offer you a secure 5 Level Protection within the SAP system to help you increase your bottom line:       

• All companies want to increase their bottom line and they focus on increasing the revenue or decreasing cost. In the recent years a very important 3^rd factor has been added to the list: NOT LOSING MONEY!

• Fact is that the so-called White Collar Crime (Internal Fraud) is the fastest growing crime in North America. In 2008, the first single incident averaged $175.000 in damages (More than the cost of a bioLock starter package). Every 4th incident was over $1Million and 9 cases exceeded $1Billion (Source: Certified Fraud Examiners). In 2008 companies lost 7% of their revenue to fraud!

• It takes years to detect internal fraud and it is normally only detected and stopped by internal whistle blowers. Conviction and punishment, as well as sending the right message to the employees, is mostly very difficult. Many successful fraud cases are never even detected since the thief is smart enough to stop before being detected, but the damages are already done. Chances are that you have fraud cases that you don’t know about.

• In the case of UBS Paine Webber a time bomb was planted to disable 1000’s of computers. The business loss was never estimated, but exceeded millions of dollars. It cost $3.1 Million dollars to bring the computers back up and running. Everybody knew who was responsible but his lawyer established quickly that 40 people had a password for the logon that was used to cause the damages. The lawyer used, what is called the SODDI defense (Some Other Dude Did It). Sine it is so hard to convict internal thieves, there is no deterring warning message to other employees. In the more recent case the French Bank, Societe Generale, lost 7.2 Billion. A trader stole passwords from his coworkers and logged on with their user ID's to conduct trades in their names. A special committee at the French Bank has recommended the bank should immediately introduce stronger security systems, including biometric authentication, to prevent a recurrence.

• Everybody has access to everybody’s password and an intruder will ALWAYS use a different logon with extended authorizations to commit a crime. In fact, all Segregation of Duties efforts (making sure that John can’t purchase a new laptop for himself and then go in the finance system and pay for it) are based on the assumption that John can only log on as John and use his own authorizations. Customers will agree that this is a misconception and in the security world we know that John would log on as his supervisor anyway to purchase the laptop and then use a profile from the finance department to pay for it. See the password link below to learn, how easy intruders can get a password to any SAP user profile with extended authorizations. Password sharing is common practice and 82% of all passwords are written down (SAP Info). The solution is to uniquely identify the Actual User behind the User Profile and protect you critical data on the data level.

• bioLock is the only system that can protect every transaction, field, infotype, data element or any task in the SAP system completely independent from the SAP User profile. bioLock adds a “biometric door lock”  and the customer defines, where they choose to add this biometric door lock (HR Data, Finance Data, Wire Transfer, Purchase Order Transaction etc. – physically every mouse click in the SAP system). Now they define in the bioLock application which person will have access to that protected task with their biometric template. So far the business has no control over which person has access to that outgoing wire transfer or which person can maintain that extremely critical credit card information. All administrators with SAP all and many external consultants as well as certain managers might have access. It is IMPOSSIBLE to control, who can access which critical data without using biometrics.

• With bioLock, this task becomes very simple: Protect the selected critical task with our biometric door lock. Select a global check for that function to require any user to provide a biometric template. Now add a VIP list and define invited users for this function. Once you have added Joe and John to this VIP list they will be the only two people that could get access to the function and even better, a log file will prove – uniquely identified with biometrics – which person did that $1Million wire transfer to the Grand Cayman Islands. Next to the security aspect bioLock also offers for the first time clear accountability. You don’t need to protect every user in the organization with biometrics, just the ones that need to have access to the task that you wish to protect. Generally, only a few 100 users have to have access to what would be considered highly critical and therefore, would be protected with the bioLock.  

Still not convinced?

Ask Security and Sarbanes-Oxley Experts about bioLock:

Take 2 minutes to see what the experts have to say about bioLock (wmv)

Do you still need more proof that passwords are insecure? Download our "Fishing for Passwords Document" and learn, how easy it is to get access to anybodies SAP User profile with critical authorizations (pdf) 

Internal Fraud is still a companies "best kept secret" and many executives ignore this tremendous threat. Check out our brief 2 minute video clip that shows cover pages of leading magazines. Please share this educational video - which could be seen as a "wake up call" - with your executive management  (link)

Call us at 1-877-bioLock and we will give you an instant security education and demo over the internet. You can also email us to schedule a presentation for you and your team at your convenience :info@realtimenorthamerica.com

Please email us any other questions you might have!