End-to-end Cloud Authentication- modern, real-time two-factor authentication in a cloud worldVCW SecurityExclusive UK Dist...
TopicsGeneral Intro and detailed version 6 information            Intro                               SMS PASSCODE        ...
Key PointsSimplicity                                                    • Strong                                          ...
Technology leaders   in two factor  authentication
Market provenGlobal top 10 representation: Telco, Retail, Manufacturing, Services etc.                                    ...
Phishing & PharmingThe tools and methods
2011 – The Year of catastrophic hack’sFirst tokens, then certificates compromised                       May 2011          ...
SMS PASSCODE®- Recognized technology leader                                 Gazelle Fast Growth Company 2011, September 20...
Capital Hill, WashingtonWhat is it all about?    The smartest possible way  to prevent un-authorized logon
What we do: Ensure your identityWith Two-factor authentication: Factor 1: something you know; Factor 2: something you have...
Ensure your identity whenaccessing IT Systemes            User ID + password            User ID + password + token        ...
The threat: Losing your identityIdentity theft on the internet #1 crime today                                             ...
Demonstration
Intuitive Secure Login Process: Session and    challenge based two-factor authentication1. Session IDgenerated            ...
SMS PASSCODE®       - Standard passcodes: not always easy to           remember- Memo Passcodes: user-friendly
Industry leading client support                                                                                           ...
AD IntegrationLDAP or Global Catalog is used for periodic data lookup (“pull”)No AD Schema Extension needed!   Default    ...
New in Version 6    End-to-end Cloud Protection          Identity protection:Identity theft or forgotten passwords
What’s new in Version 6Global defacto standard in cloud based employee identity protection» Microsoft Active Directory Fed...
Cloud Application ProtectionMicrosoft Active Directory Federation Services support                                AD USER ...
SMS PASSCODE® - Evolution to the cloud      - Transparent end-to-end cloud and enterprise protection                      ...
SMS PASSCODE® licensing model• Purchasing   • Buy and own your SMS PASSCODE license   • 1,2, or 3 years Software Assurance...
Why SMS PASSCODE ? The IT administrator                The User              Overall security• No token distribution and h...
5 billion mobile phones live todayRemote places uses celluar networks for internet access
SMS Passcode - Vcw Sales Presentation
Upcoming SlideShare
Loading in …5
×

SMS Passcode - Vcw Sales Presentation

1,326 views
1,183 views

Published on

SMS PASSCODE represents a new generation innovative solution that enables organizations and companies to easily protect employee remote access to corporate systems (Citrix, Microsoft icl. OWA, Virtual Desktops VPN, SSL VPN etc.) with two-factor authentication via SMS, voice call or secure e-mail. In short, the solution first validates the user name and password before creating and sending a one-time-password only, valid for that login attempt. Because it can only be generated this way and only works for that login on that computer, it is award-winning security against these modern threats. Easy and very secure.

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,326
On SlideShare
0
From Embeds
0
Number of Embeds
9
Actions
Shares
0
Downloads
21
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • De-facto standard for global two-factor SMS authenticationSupport all the mobile differences accros the globeReliable Global SMS transmission architectureUsers without mobile SMS-enabled device: Dial-out and read the codeCountries using a mobile secure email client standard: support SMTP email transmitted codesBlackberry and other secure email clients: support SMTP email transmitted codes (if only accessible by mobile device)Time-based secure codes created by the user that can be activated by service function if mobile device is lostUSB key and token co-existence and e-mail support for users with-out a connected mobile deviceUser Group Policy Platform for flexible administrator driven policiesFlexible rules based on the organization, access system used, location or user preferencesAdministrator controlled policies both at global, group and individual self service levels Enable geo-specific code delivery configurations within same global systemSelf-service portal for end-user configurable access workflowAdministrator driven self service web site allowing users to define own log-in work-flows and time-based codesNew Client supportCitrix Web Interface 5.4Microsoft Direct Access remove “VPN” connectivity
  • News in global delivery, user group policy engine, self service portal and new clients extending with more leads.
  • SMS Passcode - Vcw Sales Presentation

    1. 1. End-to-end Cloud Authentication- modern, real-time two-factor authentication in a cloud worldVCW SecurityExclusive UK Distributor
    2. 2. TopicsGeneral Intro and detailed version 6 information Intro SMS PASSCODE Version 6 Platform SMS Company High level PASSCODE Background solution and the overview Threats
    3. 3. Key PointsSimplicity • Strong Security • End User Costs • Half The Price of Tokens Economic Conditions
    4. 4. Technology leaders in two factor authentication
    5. 5. Market provenGlobal top 10 representation: Telco, Retail, Manufacturing, Services etc.    Citrix Ready Solution of the Year Finalist     Technology    Alliances Partner  
    6. 6. Phishing & PharmingThe tools and methods
    7. 7. 2011 – The Year of catastrophic hack’sFirst tokens, then certificates compromised May 2011 Seed file stolen- DigiNotar Certificate theft All tokens needs replacement creates havoc in goverments and puts certificate security in question
    8. 8. SMS PASSCODE®- Recognized technology leader Gazelle Fast Growth Company 2011, September 2011 Golden Bridge best two-factor authentication solution, August 2011 Red Herring Global 100 twice – most interesting IT companies. January 2011 (& 2010) ComOn Tech Gold 2010, December 2010 Gazelle Fast Growth Company 2010, September 2010 White Bull – Top 30 IT Companies in EMEA, August 2010 Citrix Ready Solution of the Year Finalist, May 2010 ”Product Excellence Finalist in Two- and multifactor authentication”, February 2010 Secure Computing Magazine Global Top 5 Innovator, October 2009 Top 25 most promising technology company in Northern Europe, August 2009 Red Herring EMEA 100 - most interesting privately held IT companies in Europe, May 2009
    9. 9. Capital Hill, WashingtonWhat is it all about? The smartest possible way to prevent un-authorized logon
    10. 10. What we do: Ensure your identityWith Two-factor authentication: Factor 1: something you know; Factor 2: something you have Credentials lost either via Augment with second login step identity theft or memory! or password reset via real-time mobile one-time-password code delivery
    11. 11. Ensure your identity whenaccessing IT Systemes User ID + password User ID + password + token How hard is it to learn?
    12. 12. The threat: Losing your identityIdentity theft on the internet #1 crime today Hacker e-mail: User ID: hello Password: pawd Hello  User ID + password How hard is it to learn? Hacker Instant message: User ID: hello Password: pawd Token: 1OEI0 Hello User ID + password + token  
    13. 13. Demonstration
    14. 14. Intuitive Secure Login Process: Session and challenge based two-factor authentication1. Session IDgenerated System access @ Log-in system2. Username and Session ID #j23lk197fhpassword entered Username3. OTP generated and Passwordlinked to session ID,4. OTP entered andvalidated to session ID PASSCODE: 597382 Company
    15. 15. SMS PASSCODE® - Standard passcodes: not always easy to remember- Memo Passcodes: user-friendly
    16. 16. Industry leading client support Web Interface Citrix Web (4.x, 5.x, 6.x) Interface Protection VPN’s (Cisco, Juniper. Citrix Access Checkpoint, Microsoft UAG , Advanced RADIUS OpenVPN etc. Gateway AE Protection Edition 4.5 (SSL, IPsec) (4.5) Protection SMS Citrix PASSCODE® Web Site Web Sites SMS Authentication iPhone (IIS, RD Web etc.) Receiver two-factor Protection Outlook Web Access or Web Access (2.x) Protection authentication (2003/07/10) Engine Microsoft ISA / TMG protected Cloud Microsoft ADFS supporting ISA/TMG Web sites Protection Applications Office365, Google, Salesforce (4.5) and other SAML cloud apps Windows Logon / RD Services Gina / Credentials Provider Protection (XP, Vista, 7) VDI (VMware View, XenDesktop, Terminal Services)
    17. 17. AD IntegrationLDAP or Global Catalog is used for periodic data lookup (“pull”)No AD Schema Extension needed! Default auto- SMS PASSCODE® users are collected from a user groups (default group name = “SMS PASSCODE users”) refresh interval: 5 minutes Nested groups supported User name and mobile number(s) are retrieved for each user Instant Child domains supported refresh can Trusted domains Mobile number (s) retrieved from Other user attributes must be maintained supported be configurable attribute(s) using SMS PASSCODE® Administration Web Interface triggered Multiple separate domains supported manually
    18. 18. New in Version 6 End-to-end Cloud Protection Identity protection:Identity theft or forgotten passwords
    19. 19. What’s new in Version 6Global defacto standard in cloud based employee identity protection» Microsoft Active Directory Federated Services (ADFS) – SAML » Support Office365 which is not supported with regular SAML » Google Apps, Salesforce and other cloud applications that support SAML 2.0» End-to-end cloud ready platform » Leverage our distributed, secure and cloud –ready platform in Version 3.0 with Version 5’s global cloud ready delivery and version 6’s cloud application protection for holistic cloud solution » Customer hassle free evolution to the cloud» SMS PasswordReset™ » User loose identity to theft or forget it. With Version 6 we now covers both scenario’s. » New product that enable easy password reset in a private/public cloud implementation » Use self service site component securely published outside the firewall to reset password
    20. 20. Cloud Application ProtectionMicrosoft Active Directory Federation Services support AD USER ID / PASSWORD SESSION ID ADFS AD @ REAL TIME OTP REAL TIME ONE TIME PASSCODE (OTP) ACCESS CLOUD APPLICATIONS AUTOMATIC USER PROVISIONING
    21. 21. SMS PASSCODE® - Evolution to the cloud - Transparent end-to-end cloud and enterprise protection Web-site protection Enterprise & Public Cloud Private Cloud For cloud apps Public Cloud Private Cloud Cloud ready VOICE DIAL-OUT (USA) AD 1 Distributed platform AD 2 CUSTOM WEB ISA/TMG Database Services GLOBAL OTP DISTRIBUTION CITRIX WEB DIRECT INTERFACE Global Broadest ACCESS End-to-end cloud protection asIntegration Policiesevolves and User market One-Time Client SMS (GLOBAL) Load Balancing Policies Password Support MICROSOFT ADFS Cloud Voice & without channel partner and customer disruption CLOUD SSL VPN’s APPLICATION User Group Policies Distribution OUTLOOK OWA PROTECTIONSMS Delivery and Platform Cloud key SECURE E-MAIL Self Service Portal (BLACKBERRY / ASIA) REMOTE DESKTOP VMWARE VDI Cloud Application Protection ADVANCED FAILOVER Password CLOUD KEYS (TIME-BASED CODES) Reset CITRIX ACCESS WINDOWS Module ADD-ON MODULES GATEWAYS IPSEC VPN’s RECEIVERS August 2009 June 2010 April 2011 November 2011
    22. 22. SMS PASSCODE® licensing model• Purchasing • Buy and own your SMS PASSCODE license • 1,2, or 3 years Software Assurance• Hosting • Rent the number of CALs you need for your business • Adjust the number of CALs up and down as you see fit • Quarterly invoicing • Software assurance included
    23. 23. Why SMS PASSCODE ? The IT administrator The User Overall security• No token distribution and handling • No token hassle • Phishing impossible: • Passcode locked to• Broadest platform support the specific session • Cellphone always at• Coexistence with other hand • Passcode only generated if the user issystems found in AD • Easy, intuitive logon• Easy administration via AD procedure • Time constrained • No scratch cards etc. • Flash sms –erased• Cellphones do not expire – from phone(tokens do) to worry about automatically• Easily scalable - modular • Users can block cellphones 24/7
    24. 24. 5 billion mobile phones live todayRemote places uses celluar networks for internet access

    ×