CRYPTOCard - Whitepapers

(Technical) The A to Z of Securing Citrix Web Interface

Tue, 16 Oct 2007 01:42:00 -0500

CRYPTOCard’s CRYPTO-Shield works in conjunction with the Citrix Web Interface 4 to replace static passwords with strong two-factor authentication that prevents the use of lost, stolen, shared, or easily guessed passwords when establishing a connection to gain access to protected resources.

This whitepaper explains how CRYPTO-Shield for Citrix delivers a strong two-factor authentication solution that uses one-time passwords to positively identify any user logging on the networked services, applications or data.

(Technical) The A to Z of Securing an SSL VPN

Tue, 16 Oct 2007 01:41:00 -0500

To stay competitive in today’s dynamic global market businesses have to provide employees with easy and cost-effective remote access to applications and resources. As the demand for this functionality has increased, it has led to astounding advances in remote access technology. Businesses have transitioned from noisy modems at 2400bps with unreliable connections to expensive VPN access with poor throughput, and most recently to fast broadband connections using SSL VPNs (Secure Socket Layer/Virtual Private Networks). But no matter how remote access technologies have changed, one thing remains constant: To provide true security an organization must be able to positively identify every user attempting to access the system.

Although today’s SSL VPNs from Cisco, Microsoft, network providers, and application developers appear at first glance to have made network access more secure than ever, the simple fact is that today’s hacker is more capable than ever at defeating new security systems. And, as a result, static passwords pose the weakest link in any security solution, even SSL VPNs.

(Technical) The A to Z of Securing Citrix Access Gateway with AAC

Tue, 16 Oct 2007 01:41:00 -0500

Citrix Access Gateway with Advance Access Control (AAC) products are universal SSL VPN appliances providing a secure, always-on, single point-of-access to an organization’s applications and data. The Access Gateway with AAC appliance is deployed in an organization’s DMZ, and secures all traffic with standards-based SSL. Remote users connect via an easy-to-use, Web-downloaded and updated client.

This is a technical whitepaper explaining how CRYPTO-Shield protects an Citrix Access Gateway with AAC with positive identification.

(Technical) The A to Z of Securing a VPN Concentrator

Tue, 16 Oct 2007 01:40:00 -0500

Virtual Private Networks allow companies to take advantage of the cost benefits and ubiquity of the Internet by providing employees and business partners’ access to confidential corporate data, resources, and protected applications. VPNs protect the integrity of the data transmission, but do not strongly verify the identity of the end user. CRYPTO-Shield provides organizations with a strong authentication solution, which ensures that their resources are protected.

This document describes how to implement a typical CRYPTOCard two-factor authentication solution with a VPN using Cisco VPN 3000 Concentrator as an example.

Two-Factor Authentication For Mac OS X

Tue, 16 Oct 2007 01:39:00 -0500

CRYPTOCard is the only end-to-end network authentication solution available for Mac OS X. Our two-factor authentication solution uses one-time passwords and adds a layer of security that makes the system near hack proof, as a new password is generated for every new logon and each password will only work once. So passwords can’t be stolen, shared, forgotten, or hacked.

This whitepaper walks through the benefits of two-factor authentication for Mac OS X platform, and includes all of the CRYPTOCard token options available.

Authentication Solution for Linux

Tue, 16 Oct 2007 01:38:00 -0500

CRYPTO-Shield for Linux is the authentication solution for IT infrastructures organized around Linux Red Hat Enterprise Server or SUSE Linux Enterprise Server. Once implemented, your Linux Server becomes the centralized authentication and token management system for all users, regardless of their computing platform or location.

This whitepaper walks through the benefits of two-factor authentication for the Linux platform, and includes all of the CRYPTOCard token options available.

Time-Based vs. Event-Based Two-Factor Authentication

Tue, 16 Oct 2007 12:21:00 -0500

Once you have seen that a two-factor authentication solution is the best way to secure your network and confidential information, the next step is to consider the different technology options for your customized solution.

This whitepaper describes the differences in the event-based and time-based tokens. Familiarize yourself with the two forms to ensure that the overall authentication suite (software and tokens) that you chose provides you with the flexibility, performance and reliability that you are looking for.

CRYPTO-MAS - Managed Authentication Service

Tue, 16 Oct 2007 12:20:00 -0500

CRYPTO-MAS is a fully Managed Authentication Service which positively identifies and provides only trusted users access to your company data and digital assets.

Delivered through CRYPTOCard's award-winning strong two-factor authentication; CRYPTO-MAS secures your Internet, Intranet, Extranet, Applications and Networks with an unbreakable one-time password to Secure Your Access!

This document will focus exclusively on the benefits, to an organization, of opting for a managed service approach to network authentication – using a Managed Authentication Service (MAS) as a means to quickly and cost effectively implement 2FA on any size corporate network.

AuthEngine - Embedding Two-Factor Authentication

Tue, 16 Oct 2007 12:20:00 -0500

If you are like many other organizations, you already have applications that maintain sensitive and confidential data that were built by you to meet your own special needs. These may be in-house applications, or applications that you offer to the market as off-the-shelf or customizable software products.

This whitepaper explains how to embed two-factor authentication into your custom or existing application without compromising the integrity of your application, using CRYPTOCard’s AuthEngine.

Two-Factor Authentication - An overview

Tue, 16 Oct 2007 12:19:00 -0500

Two-Factor Authentication uses one-time passwords adds a layer of security that makes the system near hack proof, as a new password is generated for every new logon and each password will only work once. So passwords can’t be stolen, shared, forgotten, or hacked.

This whitepaper deals with the issues with the issues surrounding network security, authentication and identity management.

Is an SSL VPN Really Secure?

Wed, 10 Oct 2007 05:05:00 -0500

BSS (Business and Scientific Services) is widely respected as one of the leading security companies in Ireland. BSS is a locally based IT provider specialized in the supply and support of IT hardware and software to Government and medium to enterprise companies in both across the Republic of Ireland.

CRYPTOCard has partnered with BSS to provide remote access solutions and with over twenty-years of technical achievements CRYPTOCard has won the trust of thousands of organizations in over 70 countries. CRYPTOCard’s solutions reduce the risks associated with remote access and web-based processes and increase compliance, at a price all businesses can afford. The only company to offer authentication in server-based, managed service and build-it-yourself options; CRYPTOCard provides the most adaptable solutions.

Zwei-Faktor-Authentifizierung - Übersicht

Wed, 27 Jun 2007 03:43:00 -0500

Internetkriminalität ist eine große und sehr weit verbreitete Bedrohung für Informationen in Netzwerken.

Mobile Anwender und Benutzer, die von verschiedenen Geräten auf das Netzwerk zugreifen, sowie der Wert und Umfang der Online-Ressourcen machen einen guten, verlässlichen Netzwerkschutz heute unentbehrlich.

Da Benutzer jederzeit und von überall auf das Netzwerk zugreifen können, sind Netzwerkauthentifizierung und Kennungsverwaltung wichtige Eckpfeiler der Sicherheitsrichtlinien für den Netzwerkzugriff. Unternehmen müssen sicher sein können, dass sie die wahre Identität der Benutzer kennen, die auf geschützte Ressourcen im Netzwerk des Unternehmens zugreifen.

Sicherheitslösungen wie Firewalls, VPN und Verschlüsselung werden heute überall verwendet und sind äußerst wichtig für den Netzwerkschutz. Alle diese Sicherheitsmaßnahmen setzen jedoch voraus, dass Benutzer verlässlich authentifiziert werden können. Ist die Authentifizierungsmethode unzuverlässig, so stellen Firewalls, VPN und Verschlüsselung nur eine kleine Hürde für Internetkriminelle dar.

Die Zwei-Faktor-Authentifizierung ist ein einfacher, kosteneffizienter und leistungsfähiger
Informationsregulator, der Unternehmen hilft, Kontrolle über die Informationen in ihrem Netzwerk zu haben und zuverlässig zu wissen, dass nur autorisierte Benutzer darauf zugreifen können.

Die Zwei-Faktor-Authentifizierung mit Einmal-Passwörtern gibt zusätzlichen Schutz und macht das System fast unangreifbar, da bei jeder Anmeldung ein neues Passwort generiert wird und jedes Passwort nur einmal funktioniert. (Auf diese Weise können Passwörter nicht gestohlen, weitergegeben oder vergessen werden.)

Dieses White Paper befasst sich mit der Netzwerksicherheit, der Authentifizierung und der Kennungsverwaltung.