Add
WAVX to Portfolio
Set Alert
Email to a
Friend
| |||
|
|
Quotes & Info
|
| WAVX > SEC Filings for WAVX > Form 10-Q on 11-May-2009 | All Recent SEC Filings |
11-May-2009
Quarterly Report
Overview
Our Business
References to "Wave", "we", "us", "our" or "the Company" refer to Wave Systems Corp. Wave was incorporated in Delaware under the name Indata Corp. on August 12, 1988. We changed our name to Cryptologics International, Inc. on December 4, 1989. We changed our name again to Wave Systems Corp.
on January 22, 1993. Our principal executive offices are located at 480 Pleasant Street, Lee, Massachusetts 01238 and our telephone number is (413) 243-1600.
Wave develops, produces and markets products for hardware-based digital security, including security applications and services that are complementary to and work with the specifications of the Trusted Computing Group, www.trustedcomputinggroup.org ("TCG"), an industry standards organization comprised of computer and device manufacturers, software vendors and other computing products manufacturers. Specifications developed by the TCG are designed to address a broad range of current and evolving digital security issues. These issues include: identity protection, data security, digital signatures, electronic transaction integrity, platform trustworthiness, network security and regulatory compliance.
In 2008, we accepted an invitation from the TCG to assume a permanent seat on its Board of Directors (the "TCG Board"), joining permanent members AMD, Fujitsu, HP, IBM, Infineon, Intel, Lenovo, Microsoft and Sun. Wave also agreed to elevate its membership status to the highest level of TCG "Promoter." Permanent members of the TCG Board provide guidance to the organization's work groups in the creation of the specifications to protect PCs and other computing devices from attacks and to help prevent data loss and theft. Wave's enhanced membership status allows it to take a more active role in helping to develop, define and promote hardware-enabled trusted computing security technologies, including related hardware building blocks and software interfaces. Wave is now eligible to serve on and chair the TCG Board, Work Groups and Special Committees; is able to submit revisions and addendum proposals for specifications with design guides; and may review and comment on design guides prior to their adoption.
One of the current TCG specifications recommends a hardware-based trusted computing platform, which is a platform that uses a semiconductor device, known as a Trusted Platform Module ("TPM") that contains protected storage and performs protected activities, including platform authentication, protected cryptographic processes and capabilities allowing for the attestation of the state of the platform which provides the first level of trust for the computing platform (a "Trusted Platform"). The TPM is a hardware chip that is separate from the platform's main CPU(s) that enables secure protection of files and other digital secrets, and performs critical security functions such as generating, storing and protecting "cryptographic keys," which are secret codes used to decipher encrypted or coded data. While TPMs provide the anchor for hardware security, known as the "root of trust", trust is achieved by integrating the TPM within a carefully architected trust infrastructure and supporting the TPM with essential operational and lifecycle services; such as key management and credential authentication.
Management has focused on entering into licensing contracts pursuant to which the original equipment manufacturer, or OEM, licenses our applications and distributes them as part of their offering, paying Wave a royalty for each unit shipped. Wave currently has signed such bundling agreements with eight separate OEM partners. Revenue recognized on these contracts for the three-month periods ended March 31, 2009 and 2008 was approximately $3,455,500 and $1,612,000, respectively.
Management is focused on opportunities for its eSign Transaction Management Suite, also known as eTMS ("eTMS"), to provide digital signing and document management solutions to the financial services and other vertical markets in which there is a clear and identifiable value proposition in implementing these solutions. In June 2008, Wave announced that Xerox Mortgage Services added e-signature - a secure and convenient way to complete mortgage loans without having to sign hardcopy documents - with licensing through Wave's eSign Systems division. Wave's e-signature capabilities build upon Xerox's current Web-based BlitzDocs®Blitz technology - providing customers with a comprehensive solution for paperless mortgage transactions. In mid-October 2008, Wave's eSign division announced enhancements to its eTMS product offering. Closing documents can now be signed and notarized in a secure environment and the note then registered through the Mortgage Electronic Registry System (MERS®), the industry-endorsed system for electronically tracking mortgage ownership and servicing rights. We continue to pursue additional opportunities for the eTMS product line.
Wave offered broadband content distribution products and services through Wavexpress and its TVTonic consumer media service, which was a joint venture between Wave and Sarnoff Corporation. On September 23, 2008, Wave, Sarnoff Corporation and Wavexpress entered into a Restructuring Agreement and an Amended and Restated Stockholder Agreement whereby, among other things, the parties agreed to
terminate the Joint Venture Agreement between the parties, dated October 15, 1999. On December 1, 2008, Wavexpress announced that it had suspended its TVTonic consumer media service and was exploring opportunities to sell or license its technology to third parties that may provide "download and play" services. A small staff remains in place at Wavexpress in order to support efforts to license or sell the Wavexpress technology to third parties.
Our Products
Client-side Applications
The EMBASSY Trust Suite
The current version of the EMBASSY Trust Suite is a set of applications and services that are designed to bring functionality and user value to TPM-enabled products. Designed to make the TPM easy for users to set up and use, the EMBASSY Trust Suite includes the EMBASSY Security Center (the "ESC"), Trusted Drive Manager ("TDM"), Document Manager ("DM"), Private Information Manager ("PIM") and Key Transfer Manager ("KTM").
The ESC enables the user to set up and configure the TPM platform. In addition to the basic function of making the TPM operational, ESC is designed to enable the user to manage extended TPM-based security settings and policies, including strong authentication, Windows logon preferences to add biometrics and streamlined password policy management. The ESC software was updated to support Seagate's Momentus 5400 FDE.2 hard drive, the latest version of Seagate's FDE drives (the "Seagate Trusted Drives"). Wave's EMBASSY Trust Suite software for TPM and key management also supports Seagate Trusted Drives.
Data Protection is addressed by the DM, which provides document encryption, decryption and client side storage of documents. The DM, which works with Microsoft Windows, and Microsoft Office, secures documents against unauthorized users and hackers. Wave's software is Windows Vista ready and builds upon the operating system's data protection feature set, providing full-featured EMBASSY solutions for data protection and strong authentication.
Password management is a security challenge due to the increasing number of passwords required and the tendency of users to select easily guessed passwords. To help improve these password issues, PIM uses the TPM to securely store and manage user information such as user names, passwords, credit card numbers and other personal information. It retrieves login information to efficiently fill in applications, web forms and web login information.
Backup and recovery of keys used for logon, signing, and protection of data is an essential requirement for deployment of TPM based systems. KTM is an archive application for the cryptographic keys that is designed to provide a simple, yet fully featured, method to securely archive, restore and transfer keys having migratable properties that are secured by the TPM.
Additionally, Wave has developed TPM Wizards as part of the EMBASSY Trust Suite which allow users to setup and use the TPM for securing 802.11x wireless networks, the Windows Encrypting File System and encrypted email.
Wave plans to continue to develop and enhance the current products being developed within this product group and will develop new applications and services as the trusted computing market continues to evolve. Current planned development costs for this product group are expected to be approximately $2.5 million for the twelve-month period ending March 31, 2010.
Middleware and Tools
TCG-Enabled Toolkit
The Wave TCG-Enabled Toolkit is a compilation of software designed to assist application developers writing new applications or modifying existing ones to function on TCG-compliant platforms. Wave provides two versions of the Toolkit, Discovery and Commercial, which enable developers to leverage basic and enhanced TCG services such as integrated key lifecycle management, including key escrow and
key recovery. The Discovery Toolkit offers application developers a license for internal evaluation only, whereas the Commercial Toolkit is a license for external redistribution.
Wave TCG-Enabled Cryptographic Service Provider ("CSP")
Wave offers a TCG-enabled CSP, which allows software developers to utilize the enhanced security of a TCG standards-based platform, facilitating a common user experience independent of the platform. It also enables applications to utilize functionality available on TCG-compliant platforms directly through the Microsoft cryptographic application programming interface, without requiring user knowledge of any specific TCG software stack layer.
Current planned development costs for this product group are expected to be approximately $3.1 million for the twelve-month period ending March 31, 2010.
EMBASSY Trust Server Applications
EMBASSY Key Management Server ("EKMS")
EKMS is a server application that is designed to provide corporate-level backup and transition of the TPM keys, a process known as key migration. Key migration using EKMS is designed to help prevent the risk of serious data loss in the event that a TPM, hard drive or motherboard becomes corrupted, or a user leaves the organization. For instance, an organization may require access to a former employee's encrypted data or TPM-secured keys for business continuity or disaster recovery purposes. EKMS enables enterprise level key protection services while ensuring proper archive procedures and recovery capabilities.
EMBASSY Authentication Server ("EAS")
EAS provides centralized management, provisioning and enforcement of multifactor domain access policies. With EAS, authentication policies can be based on TPM credentials, Smart Card credentials, user passwords and fingerprint templates. With EAS, authentication policies can be provisioned and managed from the domain controller. EAS has an integrated biometric template capability with support for a variety of third-party vendors.
EMBASSY Remote Administration Server ("ERAS")
ERAS is a server product that provides centralized management and auditing of TPMs and Seagate Trusted Drives. ERAS is designed to give IT administrators the ability to deploy and remotely manage Seagate Trusted Drives and TPM systems. It provides for initialization, pre-boot authentication management, recovery, and repurposing of TPMs and Seagate Trusted Drives. ERAS is designed to provide auditing capabilities that aid in compliance management by allowing for validation of TPM and Seagate Trusted Drive security settings, thus allowing IT administrators to assess the risk of whether a lost or compromised PC is adequately secure. ERAS is designed to facilitate enterprise adoption of TPM and Seagate Trusted Drive technology as it provides IT administrators with tools to utilize the security of these devices while reducing deployment and management costs. During November 2008, Wave announced the availability of enhanced versions of EMBASSY Trust Suite, including TDM, which incorporate support for the new Seagate Momentus FDE 7200-RPM and 5400.3-RPM self-encrypting drives shipping on Dell's new E-Series notebook PCs. In December 2008, Wave and Fujitsu Computer Products of America, Inc. showcased their self-encrypting drive solution at the Network World IT Roadmap Conference & Expo in San Francisco. Fujitsu's 2.5-inch High Definition Drive is the first technology that will meet the Opal Security Subsystem Class (SSC) specification - an industry standard recently issued by the TCG. The SSC gives vendors an industry standard for developing self-encrypting drives that secure data. During 2008, Wave worked with Fujitsu, Toshiba, Samsung and Hitachi to develop Opal-compliant FDE solutions, in addition to its currently shipping Seagate Trusted Drives.
Current planned development costs for this product are expected to be approximately $1.6 million for the twelve-month period ending March 31, 2010.
|
|