4 so customer presentation

319 views
276 views

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
319
On SlideShare
0
From Embeds
0
Number of Embeds
3
Actions
Shares
0
Downloads
2
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

4 so customer presentation

  1. 1. ID-SEC SOLUTIONS LTD Identity and Access Management Solutions
  2. 2. 4SO S mart, S imple, S ingle S ign- O n Solution for Lotus Notes
  3. 3. CURRENT SITUATION <ul><li>Lotus Notes is a highly secured messaging solution </li></ul><ul><li>10% – 20% of help-desk calls deals with password problems in Lotus Notes </li></ul><ul><li>A user forgot his Notes password won ’t be able to use his mailbox </li></ul><ul><li>To reset password takes 4 hours in average and prevents the user to access his Notes account. </li></ul>
  4. 4. 4SO – THE PROBLEM IN HELPDESK <ul><li>When user forget his Notes password, The ID file must be replace. </li></ul><ul><li>Same for losing ID file (when HD corrupted for example). </li></ul><ul><li>ID file replacement is a process that takes ~4 hour </li></ul>
  5. 5. 4SO – SECURITY PROBLEMS <ul><li>By copying the ID file and knowing the password, user can take control of the other ’s mailbox. </li></ul><ul><li>Different password policy for Active Directory and Lotus Notes. </li></ul><ul><li>When there are too many passwords to remember user tend to write the password on the screen, behind the keyboard or any insecure place. </li></ul>
  6. 6. ORDINARY LOTUS NOTES LOGIN ID File ******* User Start the Notes client User prompt to enter his password Password uses to open ID file Notes client establish encrypted session
  7. 7. 4SO LOGIN PROCESS ID File 4 S O *************************  User Start the Notes client Notes ask 4SO to supply password 4SO user details and provide Notes it long password Password uses to open ID file Notes client establish encrypted session 4SO validate Active Directory login ticket
  8. 8. 4SO SOLUTION ADVANTAGES <ul><li>Reduce help desk calls on Notes forgotten password. </li></ul><ul><li>Improve user experience along with improving Notes security. </li></ul><ul><li>Quick and simple implementation, less than 30 Seconds installation process. </li></ul><ul><li>Solution doesn’ t based on Active Directory password, but Active Directory authentication. </li></ul><ul><li>Keeps the ID file password non human, 512 bit long. </li></ul>
  9. 9. TECHNOLOGY EDGE <ul><li>Notes login based on user ’s Active Directory Kerberos ticket. </li></ul><ul><li>Allow online and offline login to Notes. </li></ul><ul><ul><li>Offline login use when a portable computer don ’t have connection to the Active Directory domain and the user login to the computer using cache login. </li></ul></ul>
  10. 10. SUPPORT <ul><li>Lotus Notes client versions 6.x, 7.x, 8.x </li></ul><ul><li>All Microsoft Windows versions </li></ul><ul><li>Remote Desktop, Citrix </li></ul><ul><li>Active Directory 2000, 2003, 2008 </li></ul><ul><li>All Active Directory authentication methods include user/password , biometric , smart card etc… </li></ul>
  11. 11. COMPOTITORS <ul><li>Lotus Notes Password sync and Shared Login </li></ul><ul><li>Pistol Star </li></ul><ul><li>Notes ID File Password Storage - The ID Vault </li></ul><ul><li>General SSO solutions (TAM, imprivata…) </li></ul>
  12. 12. NOTES SHARED LOGIN (NSL) <ul><li>You cannot use shared login if any of the following conditions is true: </li></ul><ul><li>you use a computer that does not run Microsoft Windows </li></ul><ul><li>you use a Smartcard to log in to Lotus Notes </li></ul><ul><li>your User ID is protected by multiple passwords </li></ul><ul><li>you are a roaming user that uses a roaming ID </li></ul><ul><li>you run Notes on a USB drive </li></ul><ul><li>you use a mandatory Windows profile </li></ul><ul><li>you are running Notes in a Citrix environment </li></ul>4SO support it all
  13. 13. 4SO NSL General SSO Pistolstar Smart Cards ✓ ✗ ✗ ✓ Notes versions All 8.5 All All Active Directory Multiple passwords ✓ ✗ ✓ ✗ Citrix ✓ ✗ ✓ ✓ Password strength 512 Bits Medium 6-10 Chars (Human base) 6-10 Chars (Human Base)
  14. 14. PISTOLSTAR <ul><li>PistolStar Power Power is a full password synchronized between Notes and Active Directory. </li></ul><ul><li>In order to synchronize password from Windows to Notes must replace GINA.DLL in every client. </li></ul><ul><li>Keep a human based password – 4SO have a very long password </li></ul>
  15. 15. ID VAULT AND SSO SOLUTIONS <ul><li>Use Servers to store the passwords – Single point of failure. </li></ul><ul><li>Keep a human based password – 4SO have a very long password </li></ul>
  16. 16. SUCCESS STORIES <ul><li>Major bank in Israel – 13,000 Users, works since 2008, not even one support call. </li></ul><ul><li>Ministry of Finance – 2,000 users, works since 2009, not even one support call. </li></ul><ul><li>Ministry of Interior – 2,000 users, works since 2009, not even one support call. </li></ul><ul><li>Civil Services – 1,300 users, works since 2009, not even one support call. </li></ul><ul><li>Governmental Organization – 3,500 users, works since 2009, not even one support call. </li></ul>

×