WWPass for Document Management Systems & Virtual Data Rooms

WWPass login protects user identity, applications, and data from more than 80% of all cyberattacks on web applications.
Unlike SaaS with traditional logins, WWPass SaaS users have no usernames or passwords. User identity is no longer the starting point of a login process — it is rather the result of a highly protected authentication and verification process utilizing a cryptographic authenticator or a token (WWPass Key).

WWPass Key eliminates the need for usernames and passwords while also enabling seamless, end-to-end client-side encryption. All data in your DMS or VDR is encrypted. WWPass uses chained cryptographic keys in concert with a master key generated by WWPass Key. There is no need to repeatedly revoke and reissue keys — users don’t need to be aware of the existence of keys at all, just as they don’t have to worry about passwords. At the same time, system administrators are only responsible for system support and backup — they have no access to unencrypted documents or keys and cannot manage access. Even if somebody manipulates access rights to access data from outside or inside the system, the data will still not be readable.

• By outsourcing authentication to a Zero-knowledge Third-Party Identity Provider with WWPass, you reduce operational costs for two-factor authentication, password resets, and other administrative tasks, while also eliminating vulnerabilities resulting from the use of human-readable credentials.
• Integrated client-side encryption with a master key on a user's WWPass Key saves money on secure storage and management system for encryption keys.
• WWPass Key does not need any administrative efforts — they are self-managed.

WWPass guarantees full compliance for your SaaS DMS or VDR in accordance with strong customer authentication standards: GDPR , NIST, PSD2, PSI-DSS, and HIIPA.