Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2005-07 NeoAccel, Inc. TWO FACTOR AUTHENTICATION Corporate Presentation.

Published byOswin Johnson Modified over 8 years ago

Similar presentations

Presentation on theme: "© 2005-07 NeoAccel, Inc. TWO FACTOR AUTHENTICATION Corporate Presentation."— Presentation transcript:

1 © 2005-07 NeoAccel, Inc. TWO FACTOR AUTHENTICATION Corporate Presentation

2 © 2005-07 NeoAccel, Inc. What is Authentication? Authentication is the process of identifying a user. Authentication is the process of establishing whether or not a real-world subject is who or what its identifier says it is. The verification of the identity of a person or process.

3 © 2005-07 NeoAccel, Inc. Why Passwords are not enough Vulnerable to network sniffing Crack programs to decode passwords Vulnerable to system compromises Availability of tools to perform automated dictionary attacks on passwords It is sharable Solution : use complex and strong password

4 © 2005-07 NeoAccel, Inc. Uneasiness of using strong password Long & Complex Passwords Limited duration for password validity Continuous password change & resets password generation

5 © 2005-07 NeoAccel, Inc. To the rescue What’s The Solution?.... TWO FACTOR AUTHENTICATION

6 © 2005-07 NeoAccel, Inc. Two Factor Authentication Two-Factor Authentication: What is it?... Something you know… Something you are… + OR Something you have...

7 © 2005-07 NeoAccel, Inc. Something You Know “Something You Know…….” User Id & Password PIN (Personal Identification Number) Account Number Certificates

8 © 2005-07 NeoAccel, Inc. Something You Have “Something You Have….” A physical element (Token) which is in the sole possession of the valid owner, and of which only one physical copy exists. Smart Cards Multi-Function Devices USB Token OTP Token Tokens

9 © 2005-07 NeoAccel, Inc. Something You Are “Something You Are….” Biometrics Voice Recognition Retinal Scan Finger Print Recognition

10 © 2005-07 NeoAccel, Inc. Why Two Factor is Strong Identity theft prevention Prevention from phishing & replay attacks Loss of one of the factors does not compromise security Lost token’s or certificates can be revoked

11 © 2005-07 NeoAccel, Inc. Two Factor Authentication RSA Secure ID Hardware One Time Password (OTP) Tokens Software based OTP Tokens SSL Client Certificate on Tokens Two Factor authentication in NeoAccel SSL VPN-Plus

12 © 2005-07 NeoAccel, Inc. RSA Secure ID Admin activates RSA Token for each user and provides to the user User provides username and One Time Password code generated by RSA token to login into SSL VPN-Plus SSL VPN-Plus Gateway talks to RSA Secure ID RADIUS Server to authenticate the user If required RSA Server can ask for Next PIN or Change PIN

13 © 2005-07 NeoAccel, Inc. RSA Secure ID User Interface SSL VPN-Plus Web Access Terminal No client software required Secure Simplified Access

14 © 2005-07 NeoAccel, Inc. Hardware OTP Tokens Cheap alternative to RSA Secure ID solution Admin activates OTP Token for each user and provides to the user User provides username and One Time Password code generated by token to login into SSL VPN-Plus SSL VPN-Plus Gateway talks to OTP Token Server to authenticate the user

15 © 2005-07 NeoAccel, Inc. Hardware OTP Tokens…contd Any third party OTP Hardware Token that provides RADIUS or AD interface is supported by SSL VPN-Plus Tested with Aladdin, Secure Computing, Vasco tokens

16 © 2005-07 NeoAccel, Inc. Software based OTP Tokens Cheapest OTP Solution OTP is generated by software agent running on PC, mobile, PDA, palmtop, etc. User need to carry extra device Admin provides PIN and software to user to install on the device used by User

17 © 2005-07 NeoAccel, Inc. Software based OTP Tokens…contd Any third party Software Token is supported if the server module provides RADIUS or AD interface SSL VPN-Plus has been tested with Wikid Software Token solution (User need to carry extra device)

18 © 2005-07 NeoAccel, Inc. SSL Client Certificate Authenticate users based on the SSL Client Certificate produced by user at the time of login Admin creates SSL Client certificates for users and provide to users via email or place it on hardware tokens User provides SSL Certificate at the time of login when asked by Gateway Gateway uses CA cert specified by Admin to verify the validity of Client Certificate

19 © 2005-07 NeoAccel, Inc. SSL Client Certificate…contd Easy to deploy and manage Based on proven most secure PKI technology Client Certificate can be installed on user’s PC or a USB token that can be easily carried by user Client Certificate can be easily revoked if device carrying the certificate is lost

20 © 2005-07 NeoAccel, Inc. The End NeoAccel, NAM-Plus, SSL VPN-Plus, Intelligent Connection Acceleration Architecture, ICAA, TSSL, and Secure Everything are trademarks of NeoAccel, Inc. All other names are or may be trademarks of their respective owners.

Download ppt "© 2005-07 NeoAccel, Inc. TWO FACTOR AUTHENTICATION Corporate Presentation."

Similar presentations

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM
Smart Identity Protection That Works for You and Your Users 2 Petri Ala-Annala Senior Principal, CISSP-ISSAP, CISA, CISM.

Smart Identity Protection That Works for You and Your Users 2 Petri Ala-Annala Senior Principal, CISSP-ISSAP, CISA, CISM.
McAfee One Time Password

McAfee One Time Password
A l a d d i n. c o m eToken NG-OTP Combined PKI - OTP Authentication Solution November, 2008.

A l a d d i n. c o m eToken NG-OTP Combined PKI - OTP Authentication Solution November, 2008.
1 Cypak core technology New convenient security solutions for online gaming Combat fraud and keep your customer happy.

1 Cypak core technology New convenient security solutions for online gaming Combat fraud and keep your customer happy.
15 Tactical Improvements to IT Security Virtual Keyboard, Two Factor Authentication, Active Confirmation and FAA Access to CPS Online Ganesh Reddy.

15 Tactical Improvements to IT Security Virtual Keyboard, Two Factor Authentication, Active Confirmation and FAA Access to CPS Online Ganesh Reddy.
1 Managing Identity Threats May 2010. 2 Where are the threats ? Customer Web/App Server Vulnerabilities: Trojan sniffers Soliciting Email to enter credentials.

1 Managing Identity Threats May Where are the threats ? Customer Web/App Server Vulnerabilities: Trojan sniffers Soliciting to enter credentials.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
Dr. Sarbari Gupta Electrosoft Services Tel: (703)757-9096 Security Characteristics of Cryptographic.

Dr. Sarbari Gupta Electrosoft Services Tel: (703) Security Characteristics of Cryptographic.
FIT3105 Security and Identity Management Lecture 1.

FIT3105 Security and Identity Management Lecture 1.
About PKI Key Stores Dartmouth College PKI Lab. Key Store Defined Protected “vault” to hold user’s private key with their copy of their x.509 certificate.

About PKI Key Stores Dartmouth College PKI Lab. Key Store Defined Protected “vault” to hold user’s private key with their copy of their x.509 certificate.
Alcatel Identity Server Alcatel SEL AG. Alcatel Identity Server — 2 All rights reserved © 2004, Alcatel What is an Identity Provider?  

Alcatel Identity Server Alcatel SEL AG. Alcatel Identity Server — 2 All rights reserved © 2004, Alcatel What is an Identity Provider?  
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.

4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
CONFIDENTIAL & PROPRIETARY 1 WAF and Identity and Access Management Integration The Next Step in the Evolution of Application Security Best Practices Jan.

CONFIDENTIAL & PROPRIETARY 1 WAF and Identity and Access Management Integration The Next Step in the Evolution of Application Security Best Practices Jan.
PKI-Enabled Applications That work! Linda Pruss Office of Campus Information Security

PKI-Enabled Applications That work! Linda Pruss Office of Campus Information Security
Security-Authentication

Security-Authentication
Smart Card Deployment David Gautrey IT Manager – Microsoft New Zealaand Microsoft Corporation.

Smart Card Deployment David Gautrey IT Manager – Microsoft New Zealaand Microsoft Corporation.
CMSC 414 Computer and Network Security Lecture 11 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 11 Jonathan Katz.
Certificate and Key Storage Tokens and Software

Certificate and Key Storage Tokens and Software
The Office of Information Technology Two-Factor Authentication.

The Office of Information Technology Two-Factor Authentication.

Similar presentations

Ads by Google