Information security firm Hancom With announced Wednesday the launch of its continuous authentication solution "Hancom xCAuth."
Hancom xCAuth is a solution that verifies risk levels by analyzing various contextual information — including user behavior, environment, and devices — in real time using artificial intelligence (AI). It quantifies trust indicators by comprehensively analyzing diverse context signals, including physical context (real-world information such as indoor and outdoor locations and surrounding environment), device and environmental information (devices, networks, Bluetooth, etc.), and behavioral and biometric information (user-specific data such as keystroke patterns, touch gesture patterns, and facial features).
A defining feature of the Hancom xCAuth solution is that it does not stop at one-time authentication at the login stage. Even after login, the AI continuously evaluates changes in the user's environment and anomalous patterns, and when signs of risk are detected, it applies additional authentication (adaptive MFA) in accordance with dynamic security policies. In addition, to prevent leaks of sensitive biometric and behavioral data and to reduce operational cost burdens, the solution applies on-device AI that processes the entire process of data collection, learning, and evaluation on the user's device.
The company expects the solution to serve as an effective technical alternative for the public and financial sectors in line with the government's policy of phasing out installation-based security software. Hancom With also plans to apply the xCAuth solution to the actual operations of Hana Tour, a client company.
Hancom With's strategy is to expand AI authentication technologies, including Hancom xCAuth, and quantum security technologies as the core pillars of next-generation security infrastructure. The company has passed cryptographic module validation by including the U.S. National Institute of Standards and Technology (NIST) standard post-quantum cryptography (PQC) algorithm in non-validation targets, and has advanced its data encryption product line by applying PQC. It plans to expand its application areas to lightweight cryptographic modules for low-spec embedded systems and installation-free web-segment encryption solutions within this year.
"Hancom xCAuth will be a practical zero-trust authentication system that connects users, devices, environments, and sessions into a single authentication flow, and links continuous risk assessment to actual authentication enforcement," said Song Sang-yeop, CEO of Hancom With. "We will advance our technologies and services with AI authentication and quantum security as our two main pillars, establishing ourselves as a competitive security company not only in Korea but also in the global market."
