Wave Releases Beta Version of id.wave.com, a Hardware-Secured, Single Sign-on Identity Service for the Web

Lee, MA & Las Vegas, NV (Digital ID World, Booth #11) — September 15, 2009 — Wave Systems Corp. (NASDAQ: WAVX; www.wave.com) announced today the launch of id.wave.com, a new identity service that enables strong authentication and single sign-on to Web services and applications in the "cloud." The service is available in beta form and will be demonstrated to prospective partners and industry insiders at this week’s Digital ID World Conference in Las Vegas, Sept. 15-16.

As Web-based applications and services increase in both number and importance, knowing who is on the other end of the cloud in a secure and private way is increasingly vital. Wave’s online identity service is designed to allow users to create a single, secure, user-friendly identity that is accepted at many websites including Facebook, Google and salesforce.com using OpenID and SAML. The id.wave.com service takes full advantage of the Trusted Platform Module (TPM) security chip to secure users’ authentication identities with keys held in the TPM.

To date, tens of millions of TPMs have shipped on enterprise-class PCs. Combining this installed base with the many sites that support OpenID and SAML has the potential to significantly improve Web service authentication. Users will benefit by not having to remember multiple passwords. IT benefits from an open standards solution to secure authentication credentials on the TPM, and by significantly reducing the ability for a user to lose control of his or her identity. The CIO benefits by knowing that only authorized users and authorized devices are connected to the organization’s cloud computing services, whether internal or external. Finally, users can log into their PC and the PC securely logs them into the sites where they have relationships.

"Wave is pleased to announce this new service, enabling the installed base of millions of TPMs to be able to access the websites that accept Open ID," commented Steven Sprague, President and CEO of Wave Systems. "We believe id.wave.com is what many enterprises and consumers have been looking for—an open identity provisioning service that brings ease of use, privacy and takes advantage of the strong authentication and single sign-on hardware they already own." 

With an Open ID, a visited website (relying party) communicates with an identity provider and that provider then confirms the visitor’s identity to the website. Many sites participate in OpenID as an identity provider, relying party or both. Wave’s id.wave.com service integrates the OpenID standard with the TPM chip on the user’s machine to safely protect the user’s authentication credentials in hardware. The result is that the PC internally provides stronger, multi-factor authentication between the user and service providers—providing secure digital identities across the Web.

Wave’s EMBASSY® Remote Administration Server (ERAS) already provides enterprises with central policy control of remote TPMs. Should an employee be terminated, this control is designed to enable the enterprise to immediately revoke the employee’s OpenID or SAML access credentials to sensitive Websites.

Wave Positioned to Offer Hardware-Secured Identity Service

As one of the leading providers of TPM management software, Wave’s extensive software offerings work with the TPMs from the leading vendors and with all the TPMs on PCs that have shipped to date (an estimated 300 million and counting). Since early spring of this year, Wave has been working with TrustBearer Labs, an authentication solutions provider, in developing the id.wave.com service.

Last week, the government announced the "Open Identity for Open Government" initiative (see news release), with several government agencies agreeing to pilot the acceptance of industry identity credentials from a number of providers. Wave has agreed to participate in these pilots and has committed to demonstrating the value of implementing stronger authentication to more sensitive Web services.

In addition to demonstrating id.wave.com at this week’s conference, Wave will also be participating in the following sessions at Digital ID World:

For demonstration and meeting appointments at Digital ID World, contact Wave’s Executive Vice President Lark Allen at lallen@wave.com.

Wave Logo

About Wave Systems Corp.

Wave is a pioneer in hardware-based PC security that provides software to help solve critical enterprise PC security challenges such as data protection, strong authentication, network access control and the management of these enterprise functions.  Wave is a founding member of the Trusted Computing Group (TCG), a consortium of more than 100 companies that forged open standards for hardware security.  Wave’s EMBASSY® line of client- and server-side software leverages and manages the security functions of the TCG’s industry standard hardware security chip, the Trusted Platform Module (TPM) as well as hard drives that comply with TCG’s “Opal” self-encrypting drive (SED) standard.  Self-encrypting drives are a growing segment of the data protection market, offering increased security and better performance than most existing software-based encryption solutions.  TPMs are standard equipment on many enterprise-class PCs shipping today and have shipped on an estimated 300 million PCs worldwide.  Using TPMs and/or SEDs and Wave software, enterprises can substantially and cost-effectively strengthen their current security solutions.  Visit http://www.wave.com for more information.

Safe Harbor for Forward Looking Statements

This press release may contain forward-looking information within the meaning of the Private Securities Litigation Reform Act of 1995 and Section 21E of the Securities Exchange Act of 1934, as amended (the Exchange Act), including all statements that are not statements of historical fact regarding the intent, belief or current expectations of the company, its directors or its officers with respect to, among other things: (i) the company’s financing plans; (ii) trends affecting the company’s financial condition or results of operations; (iii) the company’s growth strategy and operating strategy; and (iv) the declaration and payment of dividends.  The words "may," "would," "will," "expect," "estimate," "anticipate," "believe," "intend" and similar expressions and variations thereof are intended to identify forward-looking statements.  Investors are cautioned that any such forward-looking statements are not guarantees of future performance and involve risks and uncertainties, many of which are beyond the company’s ability to control, and that actual results may differ materially from those projected in the forward-looking statements as a result of various factors.  Wave assumes no duty to and does not undertake to update forward-looking statements.

All brands are the property of their respective owners.

For more information please contact:

Wave Systems Corp.
Michael Wheeler