Token-less Two-Factor Authentication

Need to secure your network against unauthorized access?

Implement industry leading 2-factor authentication to allow staff remote access to corporate systems without the pain and cost of deploying legacy hardware tokens.

  • Token-less solution utilizing existing mobile phones and SMS
  • Improves security whilst reducing user complexity
  • Makes use of existing corporate technologies such as Active Directory
  • Seamless integration with leading remote access and web services including Microsoft OWA, Citrix, Juniper, Cisco and many others

Why use mobile phone based 2-factor authentication?

Our mobile phone based 2-factor authentication solution offers:

  • Increased Productivity & Business Resilience – Allows more of your staff access to business systems and resources remotely, whilst maintaining a high-level of security.
  • Reduced Costs – Turn any phone that can receive SMS texts into an authentication token with a typical saving of 40-60% over token based solutions.
  • Improved Security – Two-Factor authentication is acknowledged as providing a far higher level of security for accessing your organisation’s network, systems and data than standard usernames and passwords.
  • Reduced Risk – It is a simple fact of life that people safeguard their mobile phones better than they do with hardware based security tokens.
  • Compliance – Carefully controlling access to systems and data forms an integral part of regulatory and standards frameworks such as ISO-27001 and PCI-DSS.

How it works…

The key issue in the successful use of SMS for delivering passcodes is resolving intermittent network coverage and SMS delivery delays. Our solution is fundamentally designed to resolve these issues by utilizing:

  • Pre-loaded one time passcodes (each authentication attempt sends the next required passcode)
  • Three pre-loaded one time passcodes with each message (3 authentications before requiring the next message)
  • Reusable session passcodes that change each day or multiple days
  • Optional self-help web interface to allow users to request temporary passcodes
  • Passcodes can be sent via email 

    • End user experience, good security shouldn’t add complexity, so our solution is designed to keep authentication as easy as possible by

  • Reusing the existing Microsoft (or other directory) password as the PIN (one less secret to remember)
  • Dynamically updating the previous SMS message (no need to delete old text messages)

Specifications

  • Utilizes Existing Directory Servers:
    • Microsoft Active Directory
    • Novell E-Directory
    • Sun Directory Server
    • OpenLDAP
  • No Schema Changes
  • No Additional Databases
  • Installs On:
    • Windows Server 2003
    • Windows Server 2008
    • VMWare
    • HyperV
  • Uses Simple SMS
  • Smart-Phone App Available

Pricing

Contact us for current pricing.

All prices subject to VAT at current rate
 

SecurEnvoy