Axent Defender - Two-Factor Authentication with tokens

 
c2000 ~ products ~ security

Overview
Details
Options
Related Tools
More Info
 
Axent Defender prevents data theft and destruction by only allowing access to fully authenticated users.


THE PROBLEM
Your network is open to the Internet to let your staff access your computers. How do you stop the unwanted using those same connections to steal or destroy your valuable data?

When a user connects to your system - how do you know they are who they say they are?


THE SOLUTION
Defender Two Factor Authentication. This uses something you know (a password, User ID or PIN) and something you have (a token). The token might be software embedded in the user's PC or a separate handheld processor (a small device like a pocket calculator or pager). The token has within it the user's unique and secret key.

To login, the user gives a PIN to the token. The token generates a one-time password to your computer system.

For a user to gain access to your systems, they must have knowledge of the user account and the token


THIS MEANS...
If someone steals a mobile notebook, they can't get into your system because although they might have the token, they don't have the User ID or PIN.

If someone finds out a user account on your machine (easy to do) they can't use password guessing - the token generated passwords are long and complex.

If a network sniffer managed to capture the password it would be useless because the password is one time, single use only.
 
Details
Overview
Options
Related Tools
More Info
AXENT DEFENDER OVERVIEW
 Defender extends authentication beyond static IDs and passwords, and uniquely authenticates users before granting them network access over dial-up, ISDN, on-LAN, Internet, or intranet connections. Defender uses standards-based challenge/response technology to create a one-time password that is far more secure than static passwords.

Two-factor authentication further strengthens security by requiring something unique the user has (the token issued by the security administrator) and something unique the user knows (a PIN to enable the token). Defender's easy-to-use tokens compute a one-time password when challenged by the Defender Security Server. Without the authorized user's unique token and the PIN to activate the token, potential intruders cannot compute the one-time password. No damage can be done even if the password is captured. Once used, it is never again valid.

Defender offers the option of using software or hand-held tokens. The secure and proven software token eliminates the need for users to carry a separate hand-held token. The user's laptop computer or PC becomes a token when the Defender software token is activated. Software tokens are just as secure, easier to use, and less expensive than hand-held tokens. Leading banks and Fortune 500 companies have implemented the Defender software token because it is transparent to the user, not easily lost or stolen, and half the cost of hand-held tokens. Software tokens are ideal for users who employ a single device to log-on to the network, whereas hand-held tokens are best utilized by users who frequently log-on from many different computing locations and platforms.


BENEFITS

Proven cost-effective form of authentication

Uses standards-based challenge/response technology to ensure that only authorized users gain network access

Costs 50% less than traditional hand-held tokens

Easy to use and detect if lost or stolen

Once activated, uniquely transforms entire PC into security token

Ideal for workers using more than one computer

Allows centralized management of all users, servers, and audit information

Can be implemented quickly and easily

Applies to LAN, Internet, dial-up, ISDN and NAS connections.

Works with leading communications servers, firewalls, and dialers, as well as with TACACS+ and leading Radius servers.

Can support load balancing for two or more communication servers or firewalls and Defenders Replication Server automates changes across multiple security servers

Support for 100,000's of users hosted on Microsoft SQL 7.0 database

Range of token options including software, hardware and unique email distributed tokens.
 
Options
Overview
Details
Related Tools
More Info
Supported on Windows NT, Sun Solaris, Novell, NetWare

Provides strong authentication services for other Axent products -- PowerVPN, Raptor, WebDefender and Defender logs can be examined by Intruder Alert
 
Related Tools
Overview
Details
Options
More Info
RAPTOR Firewall Complete Firewall Security
DEFENDER Authentication Two-Factor Authentication
INTRUDER ALERT Intruder Detection
NETPROWLER Intruder Detection
NETRECON Automated Security Probe
MAIL ESSENTIALS Mail Security for Microsoft Exchange
PALLADIO Mail Security for Unix
 
Need more information?
Contact us for evaluations or pricing
Overview
Details
Options
Related Tools

Your Name :
Email :
Telephone :

 

Centreline 2000 - Uniplex, Unix, Windows and Internet
Arle Court, Hatherley Lane, Cheltenham, GL51 6PN
Tel: (UK) 01242 255 000
 

URL: www.c2000.com/products/sec_dfdr.htm
© 1995-2001 Centreline 2000
Last Updated: 1st September 2000
 
  Home
  Products
  Forums
  Contact Us
  Search and Sitemap
  
Home Search and SiteMap How to contact us Free Software for You to Downloads Details on Web Hosting, Design and Programming Full Products Pages NT & Unix Discussion Boards Over 2000 Links to other useful web sites Hot News and Advice on Unix and NT Newsletters packed with great advice, free subscription Full and extensive tutorials and training guides for Uniplex, NT and more Hundreds of Secrets, Tricks and Tips for Linux, Unix, Uniplex and Microsoft products Cream of the Crop: The Best IT Books reviewed and selected Hey, IT doesn't have to be boring!