Skip navigation
Skip navigation

Paper examines user authentication from a legal and compliance perspective

Cambridge, 19 July, 2011 – GrIDsure, the pioneer in Pattern Based Authentication, has launched a white paper on the legal aspects surrounding user authentication in IT environments. Written by European law firm Field Fisher Waterhouse, the paper reviews key aspects of the legal framework for data security, including the law of confidence and the law of negligence, the EU Data Protection Directive, and rules on corporate governance. It also examines the legal meaning of ‘state of the art’ in the context of selecting an adequate technology solution for user authentication.

The authors explain why some of the most commonly used authentication technologies are open to security threats, and evaluate the concept of Pattern Based Authentication against key criteria for choosing an authentication method as well as compliance criteria.

“Protecting information is a business critical interest and a legal obligation,” said Daniel Mothersdale, CEO at GrIDsure. “But as many of the recent data breaches have shown, traditional authentication methods such as passwords and ID tokens aren’t secure enough to keep up with the requirements of cloud computing and mobile access.”

“With the European Union now planning to make it mandatory for all businesses to notify customers of data breaches, companies find themselves under immense pressure to implement ubiquitous strong authentication – every day, for every user, for every service, irrespective of the endpoints used. It’s a matter of compliance with data security law, but also a matter of adequately protecting you employees’ and customers’ identities,” he added.

The white paper is titled ‘GrIDsure Pattern Based Authentication: A perspective from a data security law point of view’, and is available for free download from the GrIDsure website

About GrIDsure

GrIDsure is the pioneer in pattern based authentication solutions which generate dynamic one-time passcodes. The company's award-winning solutions empower organisations to strengthen information security, ensuring user confidence without compromising user experience. GrIDsure's Personal Identification Pattern (PIP) technology is easy to use as it relies on the instinctive human ability to recall patterns, rather than memorising PINs or passwords. The company's solutions create an extra, flexible security layer that works independently as well as alongside other technologies such as PKI (Public Key Infrastructure). Based in Cambridge, UK, GrIDsure partners with companies such as Quest Software, CRYPTOCard, and Microsoft to provide end-users with secure authentication worldwide. For further information, contact +44 (0)1480 483300 or visit

For further information, please contact:

Paula Averley
Hothouse Communications
t. 020 8224 9933
m. 07766 257776

This press release was distributed by ResponseSource Press Release Wire on behalf of Hothouse Communications in the following categories: Business & Finance, Computing & Telecoms, for more information visit