Presentation is loading. Please wait.

Presentation is loading. Please wait.

Mobile One-Time Password. Page 2 About Changingtec -Member of group -Focus on IT security software CompanyChanging Information Technology Inc Set upApril.

Published byHugh Carroll Modified over 8 years ago

Similar presentations

Presentation on theme: "Mobile One-Time Password. Page 2 About Changingtec -Member of group -Focus on IT security software CompanyChanging Information Technology Inc Set upApril."— Presentation transcript:

1 Mobile One-Time Password

2 Page 2 About Changingtec -Member of group -Focus on IT security software CompanyChanging Information Technology Inc Set upApril 1998 CapitalAbout US$ 2.8million EmployeeAbout 50 LocationHsinchu science park Taiwan

3 Page 3 About Changingtec Focus on networking security solution Develop complete networking security product line based on core PKI technology PKIToolkits MSS Mobile Security solutionCA Certification Authority SS Secure Server VA Validation Authority RA Registration authority Generate one time password by mobile. Solving phishing 、 Trojan 、 website attack problem 。 Security USB GuardKey MOTP Mobile one time password

4 Page 4 About Changing  Software developing experience for over 10 years. Best market share in Taiwan authentication market.  Banking 80%  Financing security 90%  Medical no.1  Gaming no.1

5 Page 5 Changing success case Ministry finance Electronics receipt system is developed and maintenance by Changingtec Ministry finance Electronics receipt system is developed and maintenance by Changingtec

6 Page 6

7 Page 7 MOTP the best information leakage prevention tool MOTP (Mobile One-Time Password ) - 「 one time password 」 or 「 dynamic password 」; OTP is“not predictable 、 not reusable 、 not repeatable”. -Two factor authentication protect confidential information by higher security level. -What is two factor authentication?

8 Page 8 MOTP two factor authentication User known information User owned object 1.User log on 2.Input ID PW 3.Generate OTP by mobile/ OTP token 4.Input OTP 5.Press [log on] 6.Enter system

9 Page 9 MOTP system architecture

10 Page 10 Application  Radius application (VPN, Citrix, firewall, UTM).  IIS/Tomcat Filter (web server).  Windows Log on.  OWA (Outlook Web Access) Web Outlook Email.  Customized ID/Pass webpage.

11 Page 11 VPN OTP Token MOTP Server 1 23 1.generate OTP by OTP token , enter to SSL VPN log on screen (Web or client). 2.VPN Client transfer OTP to VPN server. 3.VPN server transfer OTP to MOTP server by Radius protocol. 4.MOTP server reply authentication result. 5.VPN server connect user to internal system. VPN log onVPN server 5 4 Case study :

12 Page 12 OTP token Web application system MOTP server 1 Web page 1.generate OTP by OTP token , input into log on page. 2.Web system check PW and transfer OTP to MOTP server. 3.MOTP server reply authentication result and allow user log on. 2 3 Case study :

13 Page 13 Web Filter General webpage MOTP server 1 23 1.No need OTP authentication when browse generate webpage. 2.Connect confidential webpage, refer to OTP web filter. 3.MOTP server authenticate OTP before allow user browse confidential page. 4.Enter protected confidential webpage. Confidential web page Filter authentication 4

14 Page 14 Windows Logon MOTP server 1 23 1.Generate OTP. Input in Windows log on screen. 2.MOTP Winlogon agent pass OTP to AD server for authentication. 3.FSDCProxy transfer OTP to MOTP server. 4.MOTP server reply authentication result. 5.FSDCProxy reply to user PC and allow user log on. Windows log on AD server 54 Case study : OTP token

15 Page 15 Web Outlook MOTP server 1 2 3 1.Generate OTP by Token. Input Web Outlook log on screen. 2.OWA system authenticate PW and transfer OTP to MOTP server. 3.MOTP server reply weather OTP authentication is passed or not. OTP Token

16 Page 16 Easy installation 5 activation Activate MOTP User ID PW and OTP 4 token installation Download and install software token 3 registration Register MOTP User 2 integration Build up system integration 1 installation Set up server 使用 使用者開始使用 MOTP 登入網頁

17 Page 17 MOTP benefit for MIS (IT manager) Prevent information leakage. Easy installation Easy maintenance. Support role authority for lamination mgt. Centralize in-out side access control by token management. Audit Log. Support HA (fail over).

18 Page 18 MOTP benefit for end user No need to maintain ID PW periodically One account can use multi-tokens Support temperate account PW. No need extra PW memorization Various Token type optional

19 Page 19 MOTP support full range token support full range token series: hardware, software token optional

20 Page 20 MOTP 3.0 advantages : Easy to manage IE based Administrator UI. Easy to management International protocol Standard Radius protocol apply to over 90% SSL VPN Audit program Complete OTP user history and analysis log. Support system changing, user search function and abnormal status notication function Scalability Support from 1 to thousands users by adding authentication server Stability Compliance with existing security system. Support high ability (HA), stable and safe.

21 Thanks~ Please feel free to contact for any inquiry.

Download ppt "Mobile One-Time Password. Page 2 About Changingtec -Member of group -Focus on IT security software CompanyChanging Information Technology Inc Set upApril."

Similar presentations

Digital Certificate Installation & User Guide For Class-2 Certificates.

Digital Certificate Installation & User Guide For Class-2 Certificates.
Installation & User Guide

Installation & User Guide
McAfee One Time Password

McAfee One Time Password
Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
Digital Certificate Installation & User Guide For Class-2 Certificates.

Digital Certificate Installation & User Guide For Class-2 Certificates.
Digital Certificate Installation & User Guide For Class-2 Certificates.

Digital Certificate Installation & User Guide For Class-2 Certificates.
EToken PRO Anywhere. Agenda  eToken PRO Anywhere Overview  Market background and target markets  Identifying the opportunity  Implementation and Pricing.

EToken PRO Anywhere. Agenda  eToken PRO Anywhere Overview  Market background and target markets  Identifying the opportunity  Implementation and Pricing.
Secure Lync mobile Authentication

Secure Lync mobile Authentication
Digital DNA Server Login People ®. Login People ˃ IT security vendor ˃ Patented Digital DNA ® technology innovation Digital DNA Server Multi-factor Authentication.

Digital DNA Server Login People ®. Login People ˃ IT security vendor ˃ Patented Digital DNA ® technology innovation Digital DNA Server Multi-factor Authentication.
Compliance on Demand. Introduction ComplianceKeeper is a web-based Licensing and Learning Management System (LLMS), that allows users to manage all Company,

Compliance on Demand. Introduction ComplianceKeeper is a web-based Licensing and Learning Management System (LLMS), that allows users to manage all Company,
PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.

PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.
© 2009 VMware Inc. All rights reserved VMware Updates Orlando VMware User Group – April 2011 Ryan Johnson VMware, Inc. Technical Account Manager Professional.

© 2009 VMware Inc. All rights reserved VMware Updates Orlando VMware User Group – April 2011 Ryan Johnson VMware, Inc. Technical Account Manager Professional.
Alcatel Identity Server Alcatel SEL AG. Alcatel Identity Server — 2 All rights reserved © 2004, Alcatel What is an Identity Provider?  

Alcatel Identity Server Alcatel SEL AG. Alcatel Identity Server — 2 All rights reserved © 2004, Alcatel What is an Identity Provider?  
CONFIDENTIAL & PROPRIETARY 1 WAF and Identity and Access Management Integration The Next Step in the Evolution of Application Security Best Practices Jan.

CONFIDENTIAL & PROPRIETARY 1 WAF and Identity and Access Management Integration The Next Step in the Evolution of Application Security Best Practices Jan.
Web2SMS. Description of service Web2SMS Service is a web (internet) based SMS service that will enable TN customers to log onto the TN website and send.

Web2SMS. Description of service Web2SMS Service is a web (internet) based SMS service that will enable TN customers to log onto the TN website and send.
Designed By: Technical Training Department

Designed By: Technical Training Department
Copyright © 2002 ACNielsen a VNU company Key Features and Benefits of the 3CX PBX for Windows Server.

Copyright © 2002 ACNielsen a VNU company Key Features and Benefits of the 3CX PBX for Windows Server.
Account Reset Console Delegated and secure self password resets Joe Vachon Sales Engineer.

Account Reset Console Delegated and secure self password resets Joe Vachon Sales Engineer.
The Office of Information Technology Two-Factor Authentication.

The Office of Information Technology Two-Factor Authentication.
Windows 2003 and 802.1x Secure Wireless Deployments.

Windows 2003 and 802.1x Secure Wireless Deployments.

Similar presentations

Ads by Google