CRYPTOcard 2-Factor Authentication is all about ensuring when someone logs into your network, it’s a somebody you know and trust. After all what’s the value of your security investment in firewalls, VPNs and such if they can be circumvented by a shared, stolen, hacked or recycled password?
So whether you choose to protect your network against unauthorised logons by installing BlackShield ID in-house, or opt instead for the “no infrastructure” simplicity of the CRYPTO-MAS managed authentication service, CRYPTOCard offers many features including:
- Reduce administration by automating provisioning tasks
- Let you mix and match from the widest choice of token and tokenless solutions
- Provide greater security policy control and flexibility
- Optimise and simplify your user logon experience
- Put real-time information and granular reporting at your fingertips
- Demonstrate a superb return on investment
All businesses regardless of industry, size or technical resources should be able to protect their on-line assets and the people with whom they share an on-line relationship. Whether you’re a small business, large corporation or a service provider, CRYPTOCard is a an excellent solution.
BlackShield ID Solutions
BlackShield ID can be used to add strong authentication to a variety of network access devices, web sites and applications. Virtually all firewalls, VPNs and SSL VPNs will communicate with BlackShield ID via the RADIUS protocol. Configuration can be completed in a matter of minutes, after which users can authenticate with their tokens.
This includes most devices from Cisco, Checkpoint, Juniper, Sonicwall, Fortinet and Watchguard for example, as well as Microsoft’s firewall and VPN offerings. Applications published via Citrix can be protected, either using in-built support for RADIUS or using a BlackShield ID agent – a piece of software that facilitates secure communication.
IIS based web applications such as Remote Web Workplace (RWW), Outlook Web Access (OWA) and SharePoint can also take advantage of the strong authentication offered through BlackShield ID. Custom web applications that are configured to use RADIUS may also authenticate against BlackShield ID.
Unix systems and applications that support PAM can also authenticate against BlackShield ID.
CRYPTO-MAS Solutions 
CRYPTO-MAS can be used to add strong authentication to a variety of network access devices, web sites and applications (which we collectively call authnodes). Virtually all firewalls, VPNs and SSL VPNs will communicate with CRYPTO-MAS via the RADIUS protocol. Configuration can be completed in a matter of minutes, after which users can authenticate with their tokens.
This includes most devices from Cisco, Checkpoint, Juniper, Sonicwall, Fortinet and Watchguard for example, as well as Microsoft’s firewall and VPN offerings. Applications published via Citrix can be protected, either using in-built support for RADIUS or using a CRYPTOCard agent – a piece of software that facilitates secure communication.
IIS based web applications such as Remote Web Workplace (RWW), Outlook Web Access (OWA) and SharePoint can also take advantage of the strong authentication offered through CRYPTO-MAS. Custom web applications that are configured to use RADIUS may also authenticate against CRYPTO-MAS.
Tokens
CRYPTOCard tokens are convenient, inexpensive, reliable and of course, never expire. Choose from a wide range of hardware, multi-platform software, hybrid and SMS On-demand tokens.
Hardware Tokens – This is a range of small, easy to carry and use physical devices that generate one-time passcodes. The main advantage of hardware tokens is portability and computing platform / application independence. Depending upon the type selected, functionality can include authentication, physical building door access, out-of-band authentication, voice authentication and on-line transaction signatures.
SMS On-Demand Tokens – These are zero-footprint alternatives that send one-time passcodes via SMS or email to the intended user. The only requirement is that the user be able to receive an SMS message on an existing device such as a cell phone. This is a “no waiting” solution that eliminates any requirement for hardware tokens or the installation of software.
Software Tokens – These are software implementations of the hardware functionality designed for installation on computers (hard drive), USB devices, PDA’s and mobile devices such as BlackBerry. Depending upon host device, software tokens can offer a unique level of integration with VPN clients and web pages for near transparent authentication. They also have the advantage of 100 % unlimited electronic issue and revocation.