What are the  Challenges of  Securing Identities  online?
Entrust is a World Leader in Identity Management and Security Software <ul><li>Founded in 1994, publicly-listed in 1998 (N...
Enterprise Authentication
Enterprise Identities: Problems Protect access to intellectual property and customer data Work from anywhere Stay out of e...
Enterprise Identities: Entrust’s Solution Broad range of authentication credentials For users, servers, devices Enables en...
Entrust IdentityGuard <ul><li>Single open platform, centralized policy management </li></ul><ul><li>User self administrati...
Integrating IdentityGuard Remote Access Applications Microsoft Windows Servers End User Web Authentication Applications En...
2 nd  Factor Authentication Authentication  Platform Online  Application   Initial Logon User Name? Password? 2 nd  Fact...
Application: Remote Access End User Remote Access Applications <ul><li>Integrates with leading remote access solutions  </...
Application: Enterprise Desktops & Servers End User Enterprise Servers Microsoft  Windows Desktops Administrators <ul><li>...
Application: Extranet Access End User Web Authentication Applications <ul><li>Range of authenticators </li></ul><ul><li>In...
Easily Extends across Enterprise Applications <ul><li>Extranet (incl. MS OWA & leading Web SSO vendors) </li></ul><ul><li>...
IdentityGuard 2 nd  Factor Protection Remote Access Enterprise Servers Microsoft Desktops Extranet Access
Integrating IdentityGuard Remote Access Applications Microsoft Windows Servers End User Web Authentication Applications En...
Integrated with Leading Technology Partners Applications Application / Infrastructure  Remote Access  Platform
SSL VPN: Juniper
Web Application Integration <ul><li>WSDL Interface for J2EE & .NET applicactions </li></ul><ul><li>Included Java bindings ...
Microsoft Desktop & Server Integration <ul><li>Small Client for Windows desktops (GINA Chain) </li></ul><ul><li>Existing A...
Remote Access Integration <ul><li>IP-SEC or SSL Gateways </li></ul><ul><li>Configuration-only integration! </li></ul>Exist...
Remote Access Authentication Flow VPN Client or Web Browser Remote Access Gateway 1. User enters authentication credential...
Repository Integration <ul><li>Leverages existing user entries </li></ul><ul><li>Adds attributes to object classes for LDA...
Thank you!
Upcoming SlideShare
Loading in …5
×

ISS SA le presenta los Escenarios para IdentityGuard de Entrust

647 views
514 views

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
647
On SlideShare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
7
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • Easy to use and support Standards-based (Radius, J2EE, Web Services) Integrated with leading applications &amp; environments Full web management
  • Easy to use and support Standards-based (Radius, J2EE, Web Services) Integrated with leading applications &amp; environments Full web management
  • Easy to use and support Standards-based (Radius, J2EE, Web Services) Integrated with leading applications &amp; environments Full web management
  • Easy to use and support Standards-based (Radius, J2EE, Web Services) Integrated with leading applications &amp; environments Full web management
  • Easy to use and support Standards-based (Radius, J2EE, Web Services) Integrated with leading applications &amp; environments Full web management
  • Easy to use and support Standards-based (Radius, J2EE, Web Services) Integrated with leading applications &amp; environments Full web management
  • ISS SA le presenta los Escenarios para IdentityGuard de Entrust

    1. 1. What are the Challenges of Securing Identities online?
    2. 2. Entrust is a World Leader in Identity Management and Security Software <ul><li>Founded in 1994, publicly-listed in 1998 (NASDAQ: ENTU) </li></ul><ul><li>Best-in-class technology, service and support – industry pioneer </li></ul><ul><li>Over 2000 customers in 50 countries – global reach </li></ul><ul><li>Geographic presence: U.S., Canada, UK, China, Germany, India and Japan </li></ul><ul><li>411 employees and 110+ patents </li></ul><ul><li>2008 Revenue: ~$100.0 million </li></ul>
    3. 3. Enterprise Authentication
    4. 4. Enterprise Identities: Problems Protect access to intellectual property and customer data Work from anywhere Stay out of employees’ way Audit access to resources Reduce transaction costs by moving online Employees Partners Contractors Other Businesses Mobile Devices Other internal Servers & Devices # of IDs 2000 2010
    5. 5. Enterprise Identities: Entrust’s Solution Broad range of authentication credentials For users, servers, devices Enables encryption and digital signature with strong identity Employees Partners Contractors Other Businesses Mobile Devices Other internal Servers & Devices
    6. 6. Entrust IdentityGuard <ul><li>Single open platform, centralized policy management </li></ul><ul><li>User self administration </li></ul><ul><li>Deploy based on Risk, Usability, Cost </li></ul>Username & Password Grid Versatile Authentication Platform Scratch Pad Digital Certificates OTP Tokens Smartcards & USB Tokens Mutual Auth IP-Geolocation Machine/ Device Auth Mobile Knowledge-Based
    7. 7. Integrating IdentityGuard Remote Access Applications Microsoft Windows Servers End User Web Authentication Applications Enterprise Applications & Data Repository
    8. 8. 2 nd Factor Authentication Authentication Platform Online Application   Initial Logon User Name? Password? 2 nd Factor Authentication 2 nd Factor Challenge
    9. 9. Application: Remote Access End User Remote Access Applications <ul><li>Integrates with leading remote access solutions </li></ul><ul><li>Leverages industry standards to streamline deployment </li></ul><ul><li>Supports MS RAS, IP-SEC, & 802.1x clients </li></ul>
    10. 10. Application: Enterprise Desktops & Servers End User Enterprise Servers Microsoft Windows Desktops Administrators <ul><li>Integrated 2 nd factor authentication </li></ul><ul><li>Easy to use & deploy </li></ul><ul><li>Leverages common security infrastructure </li></ul>Any user **** 1 6 3
    11. 11. Application: Extranet Access End User Web Authentication Applications <ul><li>Range of authenticators </li></ul><ul><li>Inexpensive to deploy </li></ul><ul><li>Easy to use and support </li></ul>
    12. 12. Easily Extends across Enterprise Applications <ul><li>Extranet (incl. MS OWA & leading Web SSO vendors) </li></ul><ul><li>Microsoft Windows Desktops </li></ul><ul><li>Remote Access: Leading IP-SEC & SSL VPNs, RAS, 802.1x, Citrix </li></ul>AnyUser ******
    13. 13. IdentityGuard 2 nd Factor Protection Remote Access Enterprise Servers Microsoft Desktops Extranet Access
    14. 14. Integrating IdentityGuard Remote Access Applications Microsoft Windows Servers End User Web Authentication Applications Enterprise Applications & Data Repository
    15. 15. Integrated with Leading Technology Partners Applications Application / Infrastructure Remote Access Platform
    16. 16. SSL VPN: Juniper
    17. 17. Web Application Integration <ul><li>WSDL Interface for J2EE & .NET applicactions </li></ul><ul><li>Included Java bindings </li></ul><ul><li>Included ISAPI filter for IIS/ISA </li></ul>Customer Environment Existing Authentication/ Sign-on Application SSL SOAP
    18. 18. Microsoft Desktop & Server Integration <ul><li>Small Client for Windows desktops (GINA Chain) </li></ul><ul><li>Existing AD Deployment (single or multi-domain) </li></ul><ul><li>Configurable support for MS RAS, IP-SEC, and 802.1x clients built-in </li></ul>Existing Active Directory Enterprise Applications & Network Resources
    19. 19. Remote Access Integration <ul><li>IP-SEC or SSL Gateways </li></ul><ul><li>Configuration-only integration! </li></ul>Existing Remote Access Gateway (IP-SEC or SSL) Radius Directory UN/PW auth with Active Directory or LDAP
    20. 20. Remote Access Authentication Flow VPN Client or Web Browser Remote Access Gateway 1. User enters authentication credentials 2 . User credentials sent to IdentityGuard 4 . IdentityGuard challenge requested & presented 5. IdentityGuard response sent to IG server 6. IdentityGuard server returns accept/reject to VPN Client Repository 7. Success allows user entry 3 . User credentials validated against directory
    21. 21. Repository Integration <ul><li>Leverages existing user entries </li></ul><ul><li>Adds attributes to object classes for LDAP or independent table for RBDMS </li></ul><ul><li>Read and Write operations required for some authentication options </li></ul>JNDI SSL Directory Database
    22. 22. Thank you!

    ×