• No results found

Two factor strong authentication. Complex solution for two factor strong authentication

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Two factor strong authentication. Complex solution for two factor strong authentication"

Copied!
16
0
0

Loading.... (view fulltext now)

Download now ( 16 Page )

Full text

(1)

Two – factor strong authentication

(2)

BMS Consulting is established as IT system

integrator since 1997

Leading positons in Eastern Europe

country

Internal processes are certified according

to the quility requirements of ISO 9001

international standard

60+ technology partners around the world

80+ certified engeneers and consultants

500+ projects in government, industry,

banking and telecom sectors

Company brief

Product portfolio

• IT Security

• Clouds, Migration and IT Support

• Business software development

(3)

200+ Employees

60+ Vendors

(4)

If you are using the services that provides important data for you

Financial institutions for upgrade their systems of authenticate clients to the level of strong

authentication

Brif description

Brif description

Main features

Main features

Who will need it

Who will need it

 Two-factor authentication is used to increase security by requiring you to provide strong authentication “something you know” (a password, PIN) and

“something you have” (laptop, mobile phone, token). The use of two distinct authentication factors helps eliminate an organization’s security concerns around granting access based on a single knowledge-based factor

 Using data encryption together with pre-boot authentication is in fact locking your data

 Using encryption key is the key to your computer  Flexible authentication platform which expands with

you and your requirements

 Configurable – apply the appropriate authentication method to the user, group or application

 Developed/supported by authentication experts

(5)

What is Strong Authentication?

1. What you know

2. What you have

3. What you are

Strong authentication means using two or more authentication methods

(6)

Where to Save Your Key

Placing your key on the PC/Laptop is not safe!

It is exposed to malicious software and insider attacks

The key must be kept outside of the computer on an

external device

(7)

Token devices in the Market

Types of token devices

(8)

Token devices

Portable

Easy to use

Easy to deploy

Enable easy and secure implementation of certificate-based (PKI) solutions

Automatic generation of PKI keys on-board the token

Secure and portable storage of PKI keys and certificates

Enable a variety of security applications in one device - secure Web access,

password management, laptop protection, secure e-mails, and more

(9)

How Does it Work using token device?

(OS Authentication)

For a user to reach the data he/she must:

As a result:

1. Insert the Token device into the USB port

2. Enter the Token password

Only authorized users can decrypt sensitive data

The private key stored on-board the token

(10)

How Does it Work using token device?

(Pre – Boot Authentication)

For a user to start the boot procedure he/she must:

1. Insert the Token device into the USB port

2. Enter the Token password

As a result:

Only authorized users can boot the PC

(11)

General Architecture

Auditing

Reporting

Token

Repository

User

Repository

Policy

Management

Certification

Center

OTP

Authentication

Network

Logon

More

Organizational

Policies

(12)

Benefits Benefits

 Robust strong authentication process – requires strong authentication

 Significantly decrease password-related helpdesk costs  Flexibility - multiple OTP delivery methods available

 Gives you the ability to provide a wide variety of security services – all with the same token:

• Laptop security

• Credential management • File encryption

• And more…

Two – factor strong authentication

Project Results Project Results Pricing PricingUp to 100 tokens – 1 000 €*From 101 to 500 tokens – 5 000 €*From 501 to 1 000 tokens – 10 000 €* *Without licenses and taxes

 Increased security - add an extra layer of authentication to application access, VPN access, or during a self-service password reset

 Reduce Risk - prevent attacks by leveraging credentials which expire after one use

 Establish mutual trust between the your organization, your customers and partners by implementing end-to-end data and network security

(13)

Building Information Security Management

System to the State Savings Bank of Ukraine

About customer

About customer

The State Savings Bank of Ukraine is one of the largest financial institutions of Ukraine. It has over 4500

branches throughout the country which carry out various functions, such as the disbursement of pensions, social aid, processing of utility payments and other banking transactions. Oschadbank is the only Ukrainian bank whose clients demand deposits are fully guaranteed by state law

Problem solved

Problem solved

Our solution

Our solution

Our customer is used one factor authentication by requirements of the regulator National Bank of

Ukraine, the customer must use strong authentication (two-factor authentication)

BMS Consulting Engineers have audited the current needs of the customer and perform the following works:

Planning architecture of system of the model two-factor authentication user

Selection and implementation solution of two-factor authentication «SafeNet»

Training of employees of the Bank

Developing instructions for administrators and users

(14)

Construction of the integrated systems of

information protection to State Agency of Land

Resources of Ukraine

About customer

About customer

The State Agency of Land Resources of Ukraine is the central body of executive power with activity directed and coordinated by the Cabinet of Ministers of Ukraine by Vice Prime Minister of Ukraine

-Minister of Regional Development, Construction and Housing and implements state policy survey and mapping activities and land relations, as well as in the State Land cadaster.

Problem solved

Problem solved

Our solution

Our solution

Our customer is used one factor authentication but by requirements of the regulator in the construction of an integrated system of information protection, the

customer must use strong authentication (two-factor authentication)

BMS Consulting Engineers have audited the current needs of the customer and perform the following works:

Planning architecture of system of the model two-factor authentication user

Selection and implementation solution of two-factor authentication «SafeNet»

Training of employees of the Bank

Developing instructions for administrators and users

(15)

Our competences and experience

"BMS Consulting" specializes in the development and  implementation of projects construction of IT infrastructure  monitoring, security and management of your IT environment,  implementation of the decisions to implement and expand the  application systems, focusing its activities on the corporate  market segment

Our team

Our team

BMS strengths

BMS strengths

We deliver high quality and always in time Certified specialists English level ‐ Upper Intermediate Real experience in real projects varying complexity International projects experience Developed and ready to use various automation and  optimization tools Ready to long term collaboration

(16)

References

Download now ( PDF - 16 Page - 2.06 MB )

Related documents

Two-Factor Authentication

c) Enter the Verification Code which appears on your Smartphone and Click: Validate Code and Continue. The Verification Code resets every 30 seconds. This is an example of what a

CRYPTOCard. Strong Two Factor Authentication

CRYPTOCard’s Citrix Access Suite (protecting Presentation Server, Web Interface, Access Gateway, MetaFrame Secure Access Manager, MetaFrame Password Manager) provides

PRESENTATION TO LONDON INFRASTRUCTURE CONFERENCE

• Managed by Babcock & Brown, a global leader in wind farm development and management3. • Experienced

WANPRESTASI DALAM PELAKSANAAN PENGADAAN BARANG DAN JASA SERTA PENYELESAIANNYA (Studi Kasus pada Putusan No. 403/PDT/2016/PT.BDG)

Lewih Mentari (Penggugat) telah dijatuhi sanksi berupa penetapan dalam daftar hitam dengan jangka waktu berlakunya sanksi sejak November 2013 sampai dengan November

DATE: November 5, 2012 REPORT NO. CS Chair and Members Committee of the Whole - Operations and Administration

 Cloud based option only, does not provide an option to host the system in-house  25 gigabytes of Email account per user / includes Contacts, Notes & Calendaring 

VPS and Beyond: Why Moving to an IaaS Offering will Pay Dividends. Part 1: VPS versus IaaS, the definitions, differences and market opportunity

Many service providers are positioning themselves incorrectly to offer their customers the benefits of IaaS which include: less wasted time on managing and monitoring It

ArchHDL: A Novel Hardware RTL Modeling and High-Speed Simulation Environment

We evaluate our proposed hardware modeling environment which consists of ArchHDL and the source code translation tool in two aspects: (1) The simulation speed and paral- lelization e