|
| Features |
UmiKey |
RSA SecurID |
Smart Card |
| Power & Longevity |
Powered by the USB port, no battery inside, last for
10 years or more
|
Replace with a new token every 0.5 - 2 years when the battery dries up
|
Same as UmiKey |
| Shipping |
Ship to the end customer via a regular mail
|
Ship with a special bulky package that is 5 ~ 10 times
more expensive than shipping a UmiKey.
That is significant for the consumer market.
|
It usually takes a smart card reader or is packaged as a USB
token. The shipment with the special bulky package is 5 ~ 10 times
more expensive than shipping a UmiKey.
That is significant for the consumer market.
|
| Platform Dependency |
Platform independent, it works on any OS, any browser, any computer
with a USB port.
No driver, no client software or middleware are needed.
|
Same as UmiKey |
The driver, middleware depend on the OS and Windows upgrades often require them
updated as well. Browser plug-in or ActiveX is needed to communicate with the
smart card, making it OS and browser dependent.
|
| Cost |
Cost effective due to the minimal materials required. And all the software, from client SDK,
personalization tools to server software are with minimal costs.
|
Expensive due the materials of display, battery and a bulky
packaging and the pricy software licensing deals.
|
Expensive with reader, driver, middleware, infrastructure and card combined.
|
| Integration |
Easy and open-source client-side SDK available.
In our experience it usually takes from 2 hours to a day for
integration with your front & back end. UmiKey offers free,
immediate online validation service to facilitate the your
integration. So you don't have to buy and install the validation
server up front.
|
The effort is similar to UmiKey. But you have to buy the RSA
validation server that costs a lot.
|
Every card or reader has subtle differences in commands they
provide.
|
| Validation Service |
UmiKey offers subscription-based OTP validation service, or you can
download the open-sourced server to run it on your own.
|
Expensive to license the validation server, and you run your own 24x7
SecurID validation service.
|
Depends, you can run your own 24x7 validation service or outsource to
3rd-party providers such as VeriSign.
|
| Ease to Carry |
UmiKey is the easiest.
You can put that in the wallet just like another credit card
or string it on your key chain.
|
Bulky to carry, doesn't fit into a wallet, thus easy to lose.
|
The USB smart card form factor is bulky to carry, doesn't fit into a wallet.
Or otherwise you may need to carry a reader with you.
|
| Support & Training |
Minimal to none.
|
Minimal to none.
|
Heavy training and support are needed because of its heavy platform dependency,
hard for end users to diagnose problems.
|
|
Environmental Friendly
|
Best, since it takes no batteries and live for 10 years or more.
|
Worst! Mercury is used in the battery, users dump them every few years when
the battery dries up.
|
OK, but the reader consumes a lot more materials to manufacture.
|
| Multi-use |
Public services open to all UmiKeys are available such as
localhost.
In the near future you will use one UmiKey to securely access a lot more services
because of UmiKey's low-cost token approach.
That makes the token more useful and valuable and gives users a reason to
carry it with them every day.
|
One token for one single purpose, useless elsewhere. You end up carrying many tokens
to access many services.
|
One token for one single purpose, useless elsewhere. You end up carrying many tokens
to access many services.
|
| Versatility |
UmiKey identifies itself to the PC as a keyboard device, So it is more versatile, things
you do on your keyboard can be programmed on the UmiKey
to facilitate automation such as
auto-navigation that launches the user browser and navigates to a designated web site.
|
None.
|
Minimal.
|
| Security |
UmiKey generates a longer one-time password with just one touch,
long passwords mean they are harder to crack. And that goes
automatically to your PC like from a keyboard so no matter how long
it is, users don't feel the burden.
|
RSA SecurID requires users to enter the OTP manually from the keyboard, slow
and error-prone especially if the OTP becomes longer. Also it is vulnerable
to shoulder peeping.
|
Smart card chips still have the strongest security and that also makes it
less flexible and hard to use for consumers.
|
| Marketing Values |
Auto-navigation brings traffic to your designated site. More services available to the
general public make UmiKey useful for users' daily lives.
|
None.
|
None.
|
