CRYPTOCard - Whitepapers

How Becta’s “Data Handling Procedures in Government” affects your school

Fri, 03 Apr 2009 12:25:00 -0500

As schools look to use the power of the Internet, the risk of identity theft increases. Schools must mitigate this risk, and Becta has provided some useful guidance on when and how to do this.

Authentication: The next factor in cloud based security services

Fri, 27 Feb 2009 12:25:00 -0500

There are two recent trends that will be remembered for their impact on oganisations and their IT departments – the first is ‘credit crunch’, the second is ‘cloud computing’. This White Paper is primarily focused upon the latter, cloud computing - and how to overcome the security issues raised by users accessing applications and data from beyond the traditional network perimeter - but it is worth noting that the adoption of this IT trend is and will continue to be significantly influenced by the former.

Two-Factor Authentication - An overview

Wed, 11 Feb 2009 07:55:00 -0500

In this white paper we outline the benefits of two-factor authentication to businesses of all sizes, we expose the risks of static passwords and show how strong two-factor authentication using one-time passwords should be the cornerstone of any security architecture.

Two-Factor Authentication uses one-time passwords to add a layer of security that makes the system near hack proof, as a new password is generated for every new logon and each password will only work once. So passwords can’t be stolen, shared, forgotten, or hacked.

This whitepaper deals with the issues with the issues surrounding network security, authentication and identity management.

Is an SSL VPN Really Secure?

Fri, 29 Aug 2008 12:32:00 -0500

Although today's SSL VPNs appear at first glance to have made remote network access more secure than ever, the simple fact is that today's hacker is more capable than ever of defeating new SSL VPN security. In a couple of easy steps just using search engines, hackers can identify users, determine their passwords, and access as a trusted user your servers. Find out how they do it and how to protect remote access to your enterprise systems in this free white paper.

(Technical) The A to Z of Securing Citrix Web Interface

Tue, 16 Oct 2007 01:42:00 -0500

CRYPTOCard’s CRYPTO-Shield works in conjunction with the Citrix Web Interface 4 to replace static passwords with strong two-factor authentication that prevents the use of lost, stolen, shared, or easily guessed passwords when establishing a connection to gain access to protected resources.

This whitepaper explains how CRYPTO-Shield for Citrix delivers a strong two-factor authentication solution that uses one-time passwords to positively identify any user logging on the networked services, applications or data.

(Technical) The A to Z of Securing an SSL VPN

Tue, 16 Oct 2007 01:41:00 -0500

To stay competitive in today’s dynamic global market businesses have to provide employees with easy and cost-effective remote access to applications and resources. As the demand for this functionality has increased, it has led to astounding advances in remote access technology. Businesses have transitioned from noisy modems at 2400bps with unreliable connections to expensive VPN access with poor throughput, and most recently to fast broadband connections using SSL VPNs (Secure Socket Layer/Virtual Private Networks). But no matter how remote access technologies have changed, one thing remains constant: To provide true security an organization must be able to positively identify every user attempting to access the system.

Although today’s SSL VPNs from Cisco, Microsoft, network providers, and application developers appear at first glance to have made network access more secure than ever, the simple fact is that today’s hacker is more capable than ever at defeating new security systems. And, as a result, static passwords pose the weakest link in any security solution, even SSL VPNs.

(Technical) The A to Z of Securing Citrix Access Gateway with AAC

Tue, 16 Oct 2007 01:41:00 -0500

Citrix Access Gateway with Advance Access Control (AAC) products are universal SSL VPN appliances providing a secure, always-on, single point-of-access to an organization’s applications and data. The Access Gateway with AAC appliance is deployed in an organization’s DMZ, and secures all traffic with standards-based SSL. Remote users connect via an easy-to-use, Web-downloaded and updated client.

This is a technical whitepaper explaining how CRYPTO-Shield protects an Citrix Access Gateway with AAC with positive identification.

(Technical) The A to Z of Securing a VPN Concentrator

Tue, 16 Oct 2007 01:40:00 -0500

Virtual Private Networks allow companies to take advantage of the cost benefits and ubiquity of the Internet by providing employees and business partners’ access to confidential corporate data, resources, and protected applications. VPNs protect the integrity of the data transmission, but do not strongly verify the identity of the end user. CRYPTO-Shield provides organizations with a strong authentication solution, which ensures that their resources are protected.

This document describes how to implement a typical CRYPTOCard two-factor authentication solution with a VPN using Cisco VPN 3000 Concentrator as an example.

Two-Factor Authentication For Mac OS X

Tue, 16 Oct 2007 01:39:00 -0500

CRYPTOCard is the only end-to-end network authentication solution available for Mac OS X. Our two-factor authentication solution uses one-time passwords and adds a layer of security that makes the system near hack proof, as a new password is generated for every new logon and each password will only work once. So passwords can’t be stolen, shared, forgotten, or hacked.

This whitepaper walks through the benefits of two-factor authentication for Mac OS X platform, and includes all of the CRYPTOCard token options available.

Authentication Solution for Linux

Tue, 16 Oct 2007 01:38:00 -0500

CRYPTO-Shield for Linux is the authentication solution for IT infrastructures organized around Linux Red Hat Enterprise Server or SUSE Linux Enterprise Server. Once implemented, your Linux Server becomes the centralized authentication and token management system for all users, regardless of their computing platform or location.

This whitepaper walks through the benefits of two-factor authentication for the Linux platform, and includes all of the CRYPTOCard token options available.

Time-Based vs. Event-Based Two-Factor Authentication

Tue, 16 Oct 2007 12:21:00 -0500

Once you have seen that a two-factor authentication solution is the best way to secure your network and confidential information, the next step is to consider the different technology options for your customized solution.

This whitepaper describes the differences in the event-based and time-based tokens. Familiarize yourself with the two forms to ensure that the overall authentication suite (software and tokens) that you chose provides you with the flexibility, performance and reliability that you are looking for.

AuthEngine - Embedding Two-Factor Authentication

Tue, 16 Oct 2007 12:20:00 -0500

If you are like many other organizations, you already have applications that maintain sensitive and confidential data that were built by you to meet your own special needs. These may be in-house applications, or applications that you offer to the market as off-the-shelf or customizable software products.

This whitepaper explains how to embed two-factor authentication into your custom or existing application without compromising the integrity of your application, using CRYPTOCard’s AuthEngine.