The document outlines the features and benefits of SMS Passcode, a two-factor authentication solution designed for secure cloud and enterprise environments. It highlights the importance of identity protection against threats like identity theft and phishing, and emphasizes cost-effectiveness and ease of use compared to traditional token systems. The latest version enhances cloud application support and includes self-service password reset functionalities.

1. End-to-end Cloud Authentication
- modern, real-time two-factor authentication in a cloud world
VCW Security
Exclusive UK Distributor

2. Topics
General Intro and detailed version 6 information
Intro
SMS PASSCODE
Version 6
Platform
SMS Company High level
PASSCODE Background solution
and the overview
Threats

3. Key Points
Simplicity
• Strong
Security
• End User
Costs
• Half The
Price of
Tokens
Economic
Conditions

4. Technology leaders
in two factor
authentication

5. Market proven
Global top 10 representation: Telco, Retail, Manufacturing, Services etc.

 
Citrix Ready Solution
of the Year Finalist
   
Technology
   Alliances Partner



6. Phishing & Pharming
The tools and methods

7. 2011 – The Year of catastrophic hack’s
First tokens, then certificates compromised
May 2011
Seed file stolen- DigiNotar Certificate theft
All tokens needs replacement creates havoc in goverments and
puts certificate security in question

8. SMS PASSCODE®
- Recognized technology leader
Gazelle Fast Growth Company 2011, September 2011
Golden Bridge best two-factor authentication solution, August 2011
Red Herring Global 100 twice – most interesting IT companies. January 2011 (& 2010)
ComOn Tech Gold 2010, December 2010
Gazelle Fast Growth Company 2010, September 2010
White Bull – Top 30 IT Companies in EMEA, August 2010
Citrix Ready Solution of the Year Finalist, May 2010
”Product Excellence Finalist in Two- and multifactor authentication”, February 2010
Secure Computing Magazine Global Top 5 Innovator, October 2009
Top 25 most promising technology company in Northern Europe, August 2009
Red Herring EMEA 100 - most interesting privately held IT companies in Europe, May 2009

9. Capital Hill, Washington
What is it all about?
The smartest possible way
to prevent un-authorized logon

10. What we do: Ensure your identity
With Two-factor authentication: Factor 1: something you know; Factor 2: something you have
Credentials lost either via Augment with second login step
identity theft or memory! or password reset via real-time
mobile one-time-password code
delivery

11. Ensure your identity when
accessing IT Systemes
User ID + password
User ID + password + token
How hard is it to learn?

12. The threat: Losing your identity
Identity theft on the internet #1 crime today
Hacker e-mail:
User ID: hello
Password: pawd
Hello 
User ID + password
How hard is it to learn?
Hacker Instant message:
User ID: hello
Password: pawd
Token: 1OEI0
Hello
User ID + password + token 


13. Demonstration

14. Intuitive Secure Login Process: Session and
challenge based two-factor authentication
1. Session ID
generated System access
@
Log-in
system
2. Username and Session ID #j23lk197fh
password entered
Username
3. OTP generated and Password
linked to session ID,
4. OTP entered and
validated to session ID
PASSCODE: 597382
Company

15. SMS PASSCODE®
- Standard passcodes: not always easy to
remember
- Memo Passcodes: user-friendly

16. Industry leading client support
Web Interface
Citrix Web (4.x, 5.x, 6.x)
Interface
Protection
VPN’s (Cisco, Juniper.
Citrix Access Checkpoint, Microsoft UAG ,
Advanced RADIUS OpenVPN etc.
Gateway AE Protection
Edition 4.5
(SSL, IPsec)
(4.5)
Protection
SMS
Citrix PASSCODE® Web Site
Web Sites
SMS Authentication iPhone (IIS, RD Web etc.)
Receiver two-factor Protection Outlook Web Access
or Web Access (2.x)
Protection authentication (2003/07/10)
Engine
Microsoft
ISA / TMG protected Cloud Microsoft ADFS supporting
ISA/TMG
Web sites Protection Applications Office365, Google, Salesforce
(4.5)
and other SAML cloud apps
Windows
Logon / RD
Services
Gina / Credentials Provider Protection
(XP, Vista, 7)
VDI
(VMware View, XenDesktop, Terminal Services)

17. AD Integration
LDAP or Global Catalog is used for periodic data lookup (“pull”)
No AD Schema Extension needed!
Default
auto-
SMS PASSCODE® users are collected from a user groups
(default group name = “SMS PASSCODE users”)
refresh
interval:
5 minutes Nested groups supported
User name and mobile number(s) are retrieved
for each user
Instant Child domains supported
refresh can Trusted domains
Mobile number (s) retrieved from
Other user attributes must be maintained
supported
be configurable attribute(s)
using SMS PASSCODE® Administration
Web Interface
triggered Multiple separate domains
supported
manually

18. New in Version 6
End-to-end Cloud Protection
Identity protection:
Identity theft or forgotten passwords

19. What’s new in Version 6
Global defacto standard in cloud based employee identity protection
» Microsoft Active Directory Federated Services (ADFS) – SAML
» Support Office365 which is not supported with regular SAML
» Google Apps, Salesforce and other cloud applications that support SAML 2.0
» End-to-end cloud ready platform
» Leverage our distributed, secure and cloud –ready platform in Version 3.0 with Version 5’s global cloud ready delivery
and version 6’s cloud application protection for holistic cloud solution
» Customer hassle free evolution to the cloud
» SMS PasswordReset™
» User loose identity to theft or forget it. With Version 6 we now covers both scenario’s.
» New product that enable easy password reset in a private/public cloud implementation
» Use self service site component securely published outside the firewall to reset password

20. Cloud Application Protection
Microsoft Active Directory Federation Services support
AD USER ID / PASSWORD
SESSION ID
ADFS
AD
@ REAL TIME OTP
REAL TIME ONE TIME PASSCODE (OTP)
ACCESS
CLOUD
APPLICATIONS
AUTOMATIC USER PROVISIONING

21. SMS PASSCODE® - Evolution to the cloud
- Transparent end-to-end cloud and enterprise protection
Web-site protection Enterprise &
Public Cloud Private Cloud For cloud apps Public Cloud
Private Cloud
Cloud ready
VOICE
DIAL-OUT (USA)
AD 1 Distributed platform
AD 2 CUSTOM WEB
ISA/TMG
Database Services
GLOBAL OTP DISTRIBUTION
CITRIX WEB
DIRECT
INTERFACE
Global Broadest ACCESS
End-to-end cloud protection asIntegration Policiesevolves and
User market
One-Time Client
SMS (GLOBAL)
Load Balancing Policies Password Support MICROSOFT ADFS
Cloud Voice & without channel partner and customer disruption
CLOUD
SSL VPN’s APPLICATION
User Group Policies
Distribution OUTLOOK OWA
PROTECTION
SMS Delivery and Platform
Cloud key SECURE E-MAIL
Self Service Portal
(BLACKBERRY / ASIA) REMOTE
DESKTOP
VMWARE
VDI
Cloud Application
Protection
ADVANCED FAILOVER
Password
CLOUD KEYS (TIME-BASED CODES) Reset
CITRIX ACCESS WINDOWS
Module ADD-ON MODULES GATEWAYS
IPSEC VPN’s RECEIVERS
August 2009 June 2010 April 2011 November 2011

22. SMS PASSCODE® licensing model
• Purchasing
• Buy and own your SMS PASSCODE license
• 1,2, or 3 years Software Assurance
• Hosting
• Rent the number of CALs you need for your business
• Adjust the number of CALs up and down as you see fit
• Quarterly invoicing
• Software assurance included

23. Why SMS PASSCODE ?
The IT administrator The User Overall security
• No token distribution and handling
• No token hassle • Phishing impossible:
• Passcode locked to
• Broadest platform support the specific session
• Cellphone always at
• Coexistence with other hand • Passcode only
generated if the user is
systems found in AD
• Easy, intuitive logon
• Easy administration via AD procedure • Time constrained
• No scratch cards etc. • Flash sms –erased
• Cellphones do not expire – from phone
(tokens do) to worry about automatically
• Easily scalable - modular • Users can block
cellphones 24/7

24. 5 billion mobile phones live today
Remote places uses celluar networks for internet access