The AuthEngine tool from Cryptocard is designed to help developers embed two-factor authentication into their application without adding costs for additional servers, databases or directories. AuthEngine works within a company's existing database, workflow and technology infrastructure. It provides the functionality for initialising authentication tokens and validating authentication requests. In this edition, Cryptocard gives away two complete AuthEngine packages worth 500 Euros each, including five KT-1 tokens and a token initialiser to set all the token's parameters. Available for Windows, Linux, Java and Mac environments, the tool eases the transition from password-based access to two-factor authentication using the company's KT-1 keychain tokens or RB-1 Pinpad tokens. The KT-1 Key chain token generates a new passcode each time the token is activated by simply pressing a button. The default operating parameters for preprogrammed tokens are encryption to AES at 192bit, with a numeric passcode of 6 digits. The tokens support a wide range of operating modes that can be modified using Crypto-Server - the module that processes authentication requests and provides all system- and token-management functions - and a serial or USB token initialiser. The initialisation process only requires 10 to 15s per token. Key length can be selected from AES 128, 192, and 256bit, randomised with each initialisation. The tokens typically provide 5 to 6 years of service from two replaceable coin-cell batteries. A low-battery warning will appear on the LCD display approximately two months before the batteries are exhausted. With user-replaceable batteries, the platform independent tokens never expire, hence no repurchase is necessary. The tokens can be resynchronised with the server locally without administrator support and seed keys are not shared. The token can also be reprogrammed to modify password complexity, encryption algorithms and other attributes when necessary.