Interview with Co-founder Yuval Hertzog

Human beings are cybersecurity’s weakest link


Interview with Yuval Hertzog, Co-Founder and Technology Head, Tide Foundation

What is “Cyber Herd Immunity” and “blind secret processing”? How does a decentralized system prevent vulnerabilities? We spoke with Yuval Hertzog, Co-Founder and Technology Head at the Tide Foundation about security-centric solutions, PRISM authentication, and more.

JAXenter: Do you believe that the future could potentially be passwordless and depend on multi-factor authentication or other personal verification methods? Would that be an improvement on the current model?

I believe the discussion around the different factors of authentication is almost insignificant in the long run – as it’s not solving anything rather moving the problem elsewhere. It does indeed make the challenge of compromising the authentication harder for bad actors, but not without an additional burden on end users.

The purpose of any factor of authentication is to establish 3 elements: the identity of the user, their authorized privileges, and their intent to perform an action. All 3 are required to establish the momentary authority of a user in a certain activity within a system.

The problem this highlights is that when the user is granted with authority, it means it was bestowed or delegated by a higher or superior authority in that system – and therein lies the problem – because it requires the system to have absolute power over the user and its representation in that system. To put it simply: an administrator can easily masquerade freely as any user in that system. If that administrator is compromised or malicious, the implications are catastrophic.

An improvement on that model would be a move towards a Self-Sovereign Authority model based on trustless technologies that reveal nothing about the user or their identity, and prevents anyone from acting within a system without their verified authority. In a Self-Sovereign Authority model, authentication is handled outside the system, through an open, decentralized network that the user doesn’t need to trust. The number of factors being used for the authentication will solely depend on the sensitivity of the activity sought.

I personally believe that because authentication processes are required to establish intent, some integration with the human brain, together with the establishment of some sort of unique-brain-signature, would be the optimal method.

 

Read More

Recent News

Announcement
16 Nov 2021

Tide win startup of the year

By AISA cybersec peak body

Announcement
20 Oct 2021

Cyber Herd Immunity

Breakthrough Cryptography Introduces New Paradigm

Press
22 Sep 2021

TechCrunch

Tide encryption to end the cyber breach pandemic

Press
20 Sep 2021

Tide at TechCrunch Disrupt

Chosen from the most competitive batch in TC history.

Announcement
15 Mar 2021

Tide win Insurtech NY

Tide named best global Insurtech, at marquee insurance event

Announcement
18 Dec 2020

Tide Named Tech23 Winner

Tech23 deep tech community celebrates next disruptors.

Video
20 Nov 2020

Tide join OECD Global Forum

Distributed ledger technology and the new era of data privacy and governance.

Announcement
15 Jun 2020

Tide Awarded ARC Grant

Together with Professor Susilo from UOW and KDDI Research, Japan.

Announcement
9 Dec 2019

Doug Knopper joins Tide

Visionary CEO appointed to Tide Foundation Advisory Board.

Announcement
22 Jun 2020

Tide Crowned Best InsurTech

In Hartford Connecticut, the insurance capital of the world, Tide have been named "Best Emerging InsurTech".

Announcement
6 Apr 2020

UK Government Study Tide

CMA Study Tide in report to parliament on digital economy.

Announcement
12 Nov 2019

OECD Report Embraces Tide

OECD Report Points to a Tide future

Archives

See all posts

Contact

Thanks for getting in touch. We'll get back to you as soon as possible!

Send another message
linkedin twitter telegram
© Tide Foundation. All rights reserved. Creative partner: Universal favourite.