Yiddishkite writes: My organization has begun a search for a two-factor authentication solution for our public-facing database. We have little desire to purchase, support, and manage hard tokens for our 30,000 users, despite the fact that we're bound by various legislative acts to implement this. I've stumbled upon PhishCops(TM) by Sestus Data Company , which they claim "is a "true multi-factor authentication" solution... the first authentication product in the world that is resistant to malware, man-in-the-middle attacks, and keylogging trojans."
It doesn't use hard tokens, and they really don't quite explain how it works. I can't seem to find any real information on this product save the numerous press releases and websites that tout the awards its won. Can slashdot tell me if this solution is authentic? Anyone have any first-hand experience, before I'm forced to call in their sales department for their pitch?