advertisement
DIGIPASS BY VASCO
Secure your business
Use
Digipass
®
two-factor authentication
S T R O N G S TaT i c Pa S S W O R D S O N E - T i M E Pa S S W O R D S P u b l i c K E Y i N F R a S T R u c T u R E
DIGIPASS BY VASCO
Enterprise security
Be smart and use DIGIPASS ® two-factor authentication!
“My passw ord is… represe ntative f passwor
d.” or 12% of users ord.” tion as p assword
35% of people u se a pie ce of p ersonal informa
“I always use the name of my wife as my passw
® note.”
“My passw wn on a Post-it de it aro und the ir deskto ord is fI$cD5k+wrote it do users w rite dow
30% of n their p assword s and hi p
VASCO addresses the security gap caused by using insecure static passwords for the authentication of users.
Strong authentication refers to systems that require multiple factors for authentication and uses advanced technology to verify a user’s identity.
A physical device like a DIGIPASS or a DIGIPASS smart card in combination with something you know like a PIN code or something you are (like a fingerprint), enables you to safely identify customers and employees who are trying to access your network resources.
VASCO’s advanced authentication technologies are virtually impossible to hack or break.
DIGIPASS
®
pack
A DIGIPASS pack consists of all the necessary DIGIPASS hardware and VASCO software to provide you with a complete and secure strong authentication solution for a range of technology partners. The DIGIPASS pack provides two-factor strong authentication for remote access, web-based applications, local area network access, and exists for a wide range of VASCO Ready Solution Partners ( please reffer to the global technology partner table in this brochure).
DIGPASS easy pack for we bmail (OWA)
DiGiPaSS easy pack for webmail (OWA) comes in a box containing 10 pieces of DIGIPASS GO 3 one time password tokens, a software installation CD for
DIGIPASS pack for OWA, a CD containing the necessary DPX-files, and respective product documentation like Quick Installation Guide and User Manual.
DIGPASS smart pack
DiGiPaSS smart pack replaces the single-factor login sequence of user name and password, with a proven security technology: strong two-factor authentication based on Smart Cards. DiGiPaSS smart pack is based on the DIGIPASS Authentication Suite and comes with smart cards and smart card readers. The DIGIPASS Authentication Suite is a software system installed on the client PC or on the Citrix ® application server to support all necessary authentication processes in a highly secure way.
DIGIPASS BY VASCO
Enterprise security
Technology partners supporting DIGIPASS
®
pack
Technology Partners Access Type Integration Type Digipass Documentation
Digipass Pack or Plug-In for
ARRAY NETWORKS
AVAYA
AXSGUARD
BLUECOAT
CELESTIX
CHECKPOINT
CISCO
CITRIX
COMPUTER ASSOCIATES/NETEGRITY/SITEMINDER
CYBER ARK
CYBERGUARD
EVIDIAN
F5
FUNK STEEL BELTED RADIUS
HP Baltimore Open View Select Access
IBM LOTUS DOMINO
IBM RACF
IBM TIVOLI ACCESS MANAGER
IMPRIVATA ENA
IMPRIVATA SSO
JUNIPER/NETSCREEN
LUCENT NAVIS RADIUS
MICROSOFT IAS
MICROSOFT ISA
MICROSOFT OWA
MOBILITY GUARD
NETASQ
NETILLA/AEP
NOMADIX
NORTEL
NOVELL LINUX ENTERPRISE
NOVELL NMAS/iChain/BorderManager
OTHER RADIUS
PASSGO
RADIATOR
REGULAR WEB CONTENT
SAFEBOOT
SAFENET
SMART PACK FOR WINDOWS/CITRIX
SONICWALL
STONESOFT
SYMANTEC RAPTOR
WATCHGUARD
WHALE COMMUNICATIONS
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√ √
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√ √
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
5
5
5
5
√
5
√
5
√ √ √
1
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
1
√
1
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
1
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
3
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
5
√
5
√
2
/√
5
√
5
√
2
/√
5
√
5
√
5
√
5
√
5
√
5
√
5
√
2
/√
5
√
2
/√
5
√
5
√
2
√
2
√
√
5
√
2
√
2
√
5
√
5
√
5
√
2
√
5
√
5
√
2
√
2
/√
5
√
2
√
5
√
5
√
5
√
5
√
5
√
5
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√
√ 1 Response only
√ 2 Included with Partner product
√ 3 No Static Password on host
√ 4 Third Party Solution
√ 5 Vasco plug in
√ x
/ √ x
= multiple choices possible
Client Side: DIGIPASS
®
family
The DIGPASS family products support three major authentication technologies:
> Using One-Time Passwords (OTP) provided by DIGIPASS
> Using Strong Static Passwords (SSP) securely stored on DIGIPASS smart cards or DIGIPASS ® authenticators.
> Using Public Key Infrastructure (PKI) to reliably sign and encrypt documents, e-mails, and logon requests. all these Digipass ® products can be combined and serve as back-ups to each other.
select and configure them to your specific security needs:
DIGIPASS ® Go 3, Go 6
DIGIPASS ® Go range are very compact authentication devices. They feature a high contrast LCD display and a single button.
One push on the button and the DIGIPASS ® shows a unique one-time password on its display.
- cost-effective DIGIPASS ® , single button manipulation and compact format
- a normal battery lifetime of 5 years and beyond offers a very high return of investment
- server side PIN verification possible
- Go 3 is OATH compliant
5 10 OTP
TIME
EVENT
NO
DIGIPASS ® 260
The Personal Identification Number (PIN) code is entered into DIGIPASS ® 260 which then calculates a dynamic password. This one-time password enables authorized access into the network.
- most cost-effective PIN-protected DIGIPASS ®
- customizable to your specific applications (PIN length, number of PIN trials, type of cryptographic algorithm)
7 28 OTP
TIME
EVENT
CHAL
YES
DIGIPASS ® 860
Two Strong Authentication Technologies in one Device. DP 860 is a universal authentication device for Public Key Infrastructure (PKI) and
One-Time Password Authentication. DP 860 provides logon to your operating system, authenticate to your WebMail, electronically sign and encrypt your E-mails and documents.
5
DIGIPASS ® for javaphone
DIGIPASS ® for Java Phone allows users to safely connect to remote networks, e-commerce, and e-banking applications directly using their cellular phone as a DIGIPASS ® . The DP for Java Phone integrates perfectly with any existing VASCO product, without the need for any changes in your existing infrastructure. DIGIPASS ® for Java Phone is offered in three different versions to fit all specific needs.
NA NA
28 SSP
OTP
TIME
EVENT
NO
OTP NO
Virtual DIGIPASS ® (VDP)
Virtual DIGIPASS ® allows users to benefit from strong authentication when they forget/lose their hardware DIGIPASS ® . VDP allows users to receive their one-time password as a text message on their portable device (e.g. mobile phone). This is the ideal secure backup solution.
NA NA OTP NO
DIGIPASS ® 905
DIGIPASS ® 905 is a transparent easy-to-install and easy-to-use PC/SC compliant smart card reader/writer. It is connected to your PC via the USB interface. Its modern and robust design is targeted to be used in workshop, office, and home environments. The mechanical components are designed to last more than 10,000 card insertions.
The DP905 is suitable for a wide range of applications, such as electronic banking, internet security, network security, loyalty and PKI secured applications.
USB 64
Holder:
224
SSP NO
DIGIPASS BY VASCO
Enterprise security
Server Side: VAcMAn
®
Middleware
The VAcMAn family of integrated software products enables the DIGIPASS ® products to actually authenticate their users. The main objective of the VAcMAn Middleware is to verify the provided One-Time Password and signatures and confirm access to the web server or the RADIUS environment. There are also provisioning, backup and user management tasks the VAcMAn family products have to accomplish .
VAcMAn ® Middleware
VACMAN ® Middleware is an out-of-the-box central authentication software that enforces Digipass strong authentication for your network access security.
VACMAN ® Middleware secures remote access and web applications.
It is the perfect solution to secure small and medium size enterprises.
Key features and benefits:
- Microsoft Management Console Administration (MMC)
- Integration with Microsoft Active Directory or ODBC repository
- Online Audit Console
- User web-based self-management
- Built-in deployment features such as self-assignment and bulk
operations reduce Total Cost of Ownership (TCO)
- Support for the complete range of DIGIPASS tokens
- Support for Virtual DIGIPASS (SMS)
Integrated Solutions
VASCO offers a range of fully integrated solutions for RACF, Novell
NMAS, Lotus Domino, Novell, Linux enterprise, Imprivata, Radiator and
Funk. No additional server is needed.
Native integration drastically reduces the cost and complexity of deploying two-factor authentication solutions.
The plug-in inherits all the native features of your existing system or application (scalability, load-balancing, delegated administration …).
aXs GUARD aXs GUARD is a comprehensive but modular Internet communication solution that addresses the unique security needs of small and medium-sized offices, by combining all essential network security, authentication functions and Internet services in a single, pro-active, easy-to manage appliance.
Access type: Remote Access Radius + WEB
DIGIPASS one-time-passwords
Client
Access type: Local Area network (LAn)
DIGIPASS
Smart Card or
ID-Token
Client
Terminal Services /
Windows Server Logon
Connected PC
Windows Client Logon
Unconnected PC
Windows Client Logon http / https
SSL
VPN
Dial-up
Web
Radius
VACMAN
Middleware
LAN
Active Directory
+
Server /
GINA /
Windows Terminal Server or
Citrix Presentation Server
Logon
DIGIPASS
Client
VASCO
VAScO designs, develops and supports patented “Strong User Authentication” products for secure network access, e-business and e-commerce.
VASCO’s user authentication technology is carried by the end-user on its DIGIPASS products which exist in hard & software format.
At the server side, VASCO’s VACMAN products guarantee that only the designated DIGIPASS user gets access to the application.
VASCO’s target markets are the applications and their several hundred million users using fixed password as security.
VASCO’s time-based system generates e-signatures and a “one-time” password that changes with every use, and is virtually impossible to hack or break.
With tens of million of DIGIPASS products sold, VASCO has established itself as a world leader in strong authentication for e-banking and for network access for blue-chip corporations and governments worldwide.
Where to buy?
VASCO DIGIPASS and VACMAN products are available through any of our Authorized Channel Partners. All VASCO Partners work to address the security challenges of today: the integrity of online identities and the secure protection of information. Visit www.vasco.com to locate your nearest reseller.
P l a c e s t a m p h e r e www.vasco.com
Belgium (Brussels) phone: +32.2.609.97.00
email: [email protected]
Usa (Boston) phone: +1 508.366.3400
email: [email protected]
China (shanghai) phone: +86 21 6443 2697 email: [email protected]
australia (sydney) phone: +61 2 8920 9666 email: [email protected]
singapore (singapore) phone: +65 6323 0906 email: [email protected]
DIGIPASS ® & VAcmAn ® are registered trademarks of VAScO Data Security. All trademarks or trade names are the property of their respective owners. VAScO reserves the right to make changes to specifications at any time and without notice. The information furnished by VAScO in this document is believed to be accurate and reliable. However, VAScO may not be held liable for its use, nor for infringement of patents or other rights of third parties resulting from its use. © 2006 VAScO. All rights reserved. EnTERPRISE SEc - 12/06 - v1
advertisement
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Related manuals
advertisement