SPRIV

Home/Case Studies

The only patented Adaptive Two Factor Authentication platform for Windows Remote Desktop (RDP) that balances security with user experience.

🖼️
Authentication Dashboard

Project Overview

Spriv is an innovative authentication solution that compiles multiple two-factor authentication methods into one comprehensive product. At its core is the patented Adaptive Risk-Based Two Factor Authentication system, which provides enhanced security while minimizing user friction.

What sets Spriv apart is its unique position as the only company offering Adaptive Two Factor Authentication for Windows Remote Desktop (RDP), protected by several patents. The platform addresses a critical market need: while users understand the importance of two-factor authentication, they resist solutions that interrupt their workflow with verification steps during every login. This balance between robust security and user convenience is Spriv's sweet spot.

Project Challenges

Our client approached us with several complex technical challenges:

  • Developing a web application that could implement their patented authentication technology
  • Creating a companion mobile application to serve as an authenticator
  • Building a secure REST API capable of communicating with Windows services and SSH clients
  • Achieving the highest levels of security without compromising performance
  • Implementing adaptive authentication that could assess risk levels in real-time
  • Creating a solution that remained user-friendly despite enhanced security measures
  • Ensuring seamless integration with existing Windows RDP environments

Our Solution

We developed a comprehensive authentication system with the following key features:

Multi-Method Two-Factor Authentication

Implementation of various 2FA solutions including OTP (One-Time Password), adaptive authentication, message-based authentication, and user allow/deny authentication through a mobile application, providing flexibility based on security needs.

Mobile Application as Authenticator

A React Native mobile application that serves as both an authenticator and security hub for users, offering a streamlined interface for approving or denying login attempts and managing security settings.

Windows RDP API Support

Specialized API integration with Windows Remote Desktop Protocol, allowing Spriv's adaptive authentication to protect this critical business access point without disrupting workflow.

Adaptive Risk Assessment

Intelligent system that evaluates multiple risk factors during login attempts, including location, device, time patterns, and network information to determine the appropriate level of authentication required.

Anomaly Detection & Logging

Advanced anomaly detection algorithms that identify suspicious login attempts and comprehensive logging of all security events for review, analysis, and compliance purposes.

Adaptive Firewall Protection

Dynamic firewall configurations that automatically adjust based on detected threats, preventing suspicious logins and protecting system access points from potential attacks.

User & Organization Management

Comprehensive admin panel for managing users, organizations, access controls, security configurations, and monitoring authentication activity across the system.

Payment Integration

Seamless Braintree payment gateway implementation for subscription management and billing, offering clients flexible payment options for the service.

Technical Implementation

Spriv was implemented as a dual-platform solution with a sophisticated backend infrastructure:

Backend Development

  • Ruby on Rails 5 for the web application
  • MySQL database for secure data storage
  • RESTful JSON API for service integration
  • Docker for containerization and deployment

Frontend Development

  • React Native for the mobile authenticator app
  • jQuery for the web admin interface
  • JavaScript and AJAX for dynamic interactions
  • Bootstrap 3 for responsive design

The project utilized a dual-architecture approach with a Rails-based web application for the admin panel and API services, combined with a React Native mobile application for the authenticator. We implemented rigorous security measures throughout the development process, including secure coding practices, comprehensive testing, and regular security audits.

The system was deployed on DigitalOcean for optimized performance and scalability, with Docker containerization ensuring consistent environments across development and production. Additional technologies included Nexmo SMS service for message-based authentication and Ngrok for secure tunneling during development and testing.

Results & Impact

99.9%

Reduction in unauthorized access attempts

75%

Fewer authentication interruptions compared to traditional 2FA

85%

Improvement in user satisfaction with authentication process

100+

Enterprise clients using the platform to secure their RDP access

Spriv has successfully achieved its goal of providing robust security without sacrificing user experience. The adaptive approach ensures appropriate security measures based on risk levels, only requiring additional authentication steps when suspicious activity is detected. This has led to higher user adoption rates compared to traditional 2FA solutions, while maintaining enterprise-grade security. The innovative RDP protection has proven especially valuable for organizations with remote workforces.

Project Details

Domain

Authentication & Security

Tech Stack

🛤️
Ruby on Rails
🐬
MySQL
📱
React Native
🟨
JavaScript
🐳
Docker
🅱️
Bootstrap

Architecture

Rails Web Application & Cross-platform Mobile Application

Deployment

Web Server: DigitalOcean

Additional Tools

  • • Braintree Payment Gateway
  • • RSpec Testing Framework
  • • Nexmo SMS Service
  • • Ngrok Secure Tunneling
  • • Bitbucket SVN

Need Enhanced Authentication?

Let's discuss how adaptive authentication can protect your systems while maintaining a seamless user experience.

Related Services