SafeTok

Peachy · 25-03-2009, 06:28 PM

Hi guys, I would be really grateful if you would review the website safetok.com

The webpage offers SafeTok - a multi-factor authentication system. Generally speaking, the website is aimed at any webmaster who would like to add extra security to his/her website. I would be really interested in hearing your comments on both the design & usability as well as the product itself! (you can try it out by clicking on demo or you can even integrate it immediately, if you want to). If you have any other suggestions, please let me know! Below a small overview on the system:

fisicx · 26-03-2009, 08:26 AM

Looks like a very useful tools but the website has a very cartoonist look about it.

It's also very difficult to work out exactly what you are offering, the important details are hidden away. I wanted to use your demo but couldn't be bothered to set up a new account. you need to make it as easy as possible for visitor to test the system, why not provide a dummy account.

There are no contact details on the site. How do we know you are not a phishing site?

Peachy · 26-03-2009, 04:57 PM

Thanks for your review - it's great help.

It's very interesting that you don't like the design - we made it by purpose different to stand out and make it easier for the general public to understand. Do you think a corporate design would be more appropriate?

Also, could you please tell me what details in particular are hidden away? We tried to organise it so that the first page gives a general overview for everyone, and depending on the users intention he can then find out more.. How do you think should it be changed?

I find it very surprising that you didn't get to trying it out - we tried to make the registration as easy as possible (Just requires you to add a username + password). Still, adding a demo account might be a good idea, though it might be problematic since a person testing it might protect it with a device - in which case no one else would be able to access it. But I guess we can think of some way to solve this.

I also didn't anticipate that you think that people could have any concerns regarding the page being a phishing site - after the page doesn't request any personal data whatsoever - any webpage implementing the system still does the username/password check - SafeTok only checks for device + fingerprint. Nevertheless, adding more contact details is probably a good idea! What would you be looking for in particular? Contact e-mail? Address? Company name? Phone Nr?

Thanks for your great help!

P.S: Please remember - a phishing site may always tell you all contact information in the world - probably even the ones of the real organisation - it is not a proof that a page is authentic! Keep that in mind when doing your online shopping

Peachy · 27-03-2009, 11:54 PM

Thanks for the review fiscx! Your comments are really interesting and non-intuitive! Let's discuss them..

We designed the page by purpose to stand out, and look different. We thought that the cartoonist design might make SafeTok & online authentication easier to understand and might make it much more fun & memorable than the traditional corporate style. Do you think this was not a good idea?

Also, I am really surprised that you find it unclear from the first page what we are offering. I always thought that it gives a good overview. I would be really grateful if you could let me know how to improve & make it more clear/understandable, what you think is missing and what important details are hidden away.

Regarding the demo page, adding a dummy account is probably a good idea. There might however be some problems since users might decide to protect the dummy account with their device in which case no one else will be able to access it. So arranging for it might be tricky. I am quite surprised that you didn't get to sign up so - we tried to make it as easy as possible - all you need to enter is your desired username & password.

Your remark regarding contact details is very interesting indeed. I never thought that anyone might consider the page a phishing page since it does not request any personal data whatsoever - so it can't possibly do phishing (if a webmaster decides to implement SafeTok, his webpage will still do the username & password check, SafeTok will only do the device & fingerprint check.). What kind of contact data would you expect? Contact e-mail address? Phone Nr? Address? Company name?
Please remember though that provision of contact details & being a phishing website are absolutely unrelated.

Phishing websites often look like the real website and even provide the true contact details, so it is not a good way to be sure that a website is authentic

fisicx · 30-03-2009, 08:20 AM

The cartoonish feel makes the site look homemade.

Why do i need to use your service? What exactly are the dangers of logging in to my bank without third party securrity. Do I need to download anything? To I need to buy anything? How does it work? How much does it cost?

All this information needs to be on the homepage a written in such a way as to catch the eye. your opening sentance begins: SafeTok protects websites.... 99% of your visitors will switch off at that point since they don't have a website!

The homepage is very busy, there is no real focus - what do you want me to read first and what do you want me to do? If I want an accouint, where is the 'sign up now' link?

I know what you mean about phishing but the average joe doesn't. YOu need to make it clear that you don't hold any personal data or even log which sites I want to visit. Having your contact detail's on the site at least allows the visitor to check up who you are.

I've just watched your videos and am now completly confused. It safetok for me to protect my website or to protect me when logging into my bank?

tkessex · 10-04-2009, 08:52 PM

When you're attempting to sell a product such as this, you have to be aware of how the company will be perceived. As you profess to deal with personal online security you should be doing all that you can to project a clean, professional and trustworthy image.

As it is, it looks like your website has been formed around a child's drawing - there is no way I would consent to allow a third-party company to process my biometric information with a website like yours. Online businesses have to follow the number one rule of fine dining - the first bite is with the eye. Would you trust a car salesman in shorts, a torn t-shirt and baseball cap?

From what I can tell you hope to sell your product to companies who run websites which require some form of identity authentication. So, rather than me buying the software and using it to access my online banking, you need to sell to the bank itself and have them integrate it as part of their security set-up. The fact that it took me so long to work that out, and still not know if I'm right, highlights your other real problem.

bcmedia · 16-04-2009, 02:27 PM

I agree with the comments above - the cartoony nature does not present your company in a very professional light. With bio-metrics being such a serious business these days (especially in the media, with the government trying to roll out bio metric ID cards, to much critisism), I would have thought it was very important that your site presents the information in a manner that exudes hi-tech, professionalism & compentancy.

Unfortunately the cartoon feel does little to push any of these agendas. I'd also make changes to the content layout, such as the menu names and possible the content as well, however without fully reviewing the site I couldn't give any firmer feedback.

On another note - I worked in the Casino Industry for 5 years & my initial, opening thought was that you sold gaming tokens for slots! The safetok logo with the sparkle running round it is reminicent, IMO, of Blackpool slots or some small time firm in Eastern Europe trying to break into the Gaming Industry! Whilst working in that industry I seen many sites with similar layouts.

Peachy · 16-09-2009, 12:20 PM

Thanks for all your comments and advice. Taking into account your input, the webpage was redesigned to give a more professional look & feel. I would be very grateful if you would have another look at safetok.com and give me your opinion on the new design. Please take into account however, that it is not 100% completed yet. Thanks a lot.