1 / 24

David Maislin Securant Technologies

David Maislin Securant Technologies. Building a Unified Security Infrastructure for Web-Based Financial Transactions. Agenda. Evolution of eBusiness Access Management Solution Requirements ClearTrust Overview Customer Case Studies. Evolution of eBusiness. Wave II

lacey-kidd
Télécharger la présentation

David Maislin Securant Technologies

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. David MaislinSecurant Technologies Building a Unified Security Infrastructure for Web-Based Financial Transactions

  2. Agenda • Evolution of eBusiness • Access Management Solution Requirements • ClearTrust Overview • Customer Case Studies

  3. Evolution of eBusiness • Wave II • Extended Enterprise Access Wave I Information Access Wave III Collaborative Commerce

  4. Wave I: Information Access • Major Trends: • Emergence of the Intranet and Extranet as a cost-efficient and effective • mechanism for disseminating information to employees, customers, and • partners • Risk of exposure of proprietary content

  5. Wave II: Extended Enterprise Access • Major Trends: • Demonstrated success with Wave I deployments • Technology continues to innovate • Companies extending internal business processes to the web • Risk of exposure of proprietary content and transactions • Self-service for employees, customers, and partners

  6. Wave III: Collaborative Commerce • Major Trends: • Demonstrated success with Wave II deployments • Emergence of networked business models • Companies extending internal business processes across multiple organizations and service providers • Risk of exposure of proprietary content and transactions between organizations

  7. Evolution of eBusiness

  8. Wave I Need to manage exponential growth of users Need to provide ease of use for users Increased risk by exposing proprietary content Customer Requirements Customer Needs Solution Requirements • Wave I • Delegated Administration • Single-Sign On (SSO) • Granular Access Control • Integration to web servers • Wave II • Need to manage further growth of users • Need to provide ease of use for users  Single Sign-On across the enterprise • Further increased risk from exposure of business processes • Wave II • Delegated Administration • Enterprise Single-Sign On (SSO) • Unified Access Management • Granular Access Control • Integration to 3rd party security solutions • Auditing and Threat Detection • Integration to web servers, application servers, portal servers, business applications, user data stores, etc.

  9. Wave III Need for interoperability across sites and organizations Need to provide ease of use for users  Single Sign-On across multiple enterprises Further increased risk associated with transactions between organizations Customer Requirements Customer Needs Solution Requirements • Wave III • Compliance and support for standards such as SAML • Multi-Domain Single Sign-On (MDSSO) • Secure transaction support • XML support

  10. Unified Access Management

  11. Enterprise Identity Management • Data Store Adapters • LDAP Directories • Meta Directories • RDBMS • Mainframe • Other

  12. Enterprise Integration Infrastructure Adapters Infrastructure Adapters Sign-On Adapters

  13. ClearTrust Product Suite

  14. User and Policy Administration Delegated Administration Virtual Business Units Single Sign-On (SSO) Flexible Authentication Capabilities Username/Password Digital Certificates LDAP NT SecurID Other Custom Granular Authorization Basic Entitlements Dynamic Smart Rules Policy Assessment Test policies prior to deployment Logging, Auditing, and & Reporting Log Files Error Logs Installation Logs Component Activity Logs User Activity Logs 20 pre-defined reports Out-of-the-box integration to Crystal Reports SecureControl

  15. SecureDetector • Seamless integration with SecureControl internal logging • Centralized monitoring of all activity • Proactive response to user-defined activities • Intrusion detection integrated with network level security • Easy administration • Ability to define attack policies • Ability to define subsequent trigger actions • Delivered out-of-the-box reports

  16. Users Access Channels: Intranet, Extranet, Portal, Wireless Securant ClearTrust Inter|Site Sign-On Security System Interoperability (SAML) PIX PIX PIX Company A Company B Company C • Benefits • Enhanced user experience across multiple sites and domains • New revenue and co-marketing opportunities • Standards-based solution means greater adoption and support by multiple partners • Independence from specific Web security solutions allowing greater flexibility and partner selection Inter|Site Sign-On

  17. SecureTransact Org B XML Transactions Org A • Future ClearTrust product providing security for business to business transactions • Authentication – authentication of end users performing transactions • Authorization – granular authorization of what transactions are allowed • Audit – centralized, secure audit logs with reports • Monitor and respond – fraud detection and response • Non-repudiation – digitally signed transactions and audit trails • Delegated User Management – definition of what users can perform what transactions • Can be implemented as a transaction authority service (3rd party or in-house) • Authentication Service Bureau • User and Policy Management • Trusted Profile Management • Validation and Auditing Services

  18. Partners Customers Employees “Silo” Access Mgmt “Silo” Access Mgmt “Silo” Access Mgmt “Silo” Access Mgmt “Silo” Access Mgmt Enterprise eBusiness Infrastructure (Web Servers/Application Servers/Data Repositories/Etc.) Enterprise eBusiness Applications HR, Financial Mgmt eCRM eCommerce Supply Chain Mgmt Industry Specific Retail Banking Commercial Banking Brokerage Insurance Customer Care Unified Access Management Nirvana Access Channels: Intranet, Extranet, Portal, Wireless Network Security- Firewall, ISS, VPN PKI Securant ClearTrust Web SSO Access Management/Administration/Audit

  19. Benefits • Unified Access Management across the enterprise(s) • Positive impact on your bottom line • Cost Savings • User Administration Savings • Delegated administration savings • Help desk savings (password reset) • Secure Self-Service • Improved productivity of employees • Protection Against Security Breaches • Cost savings associated with damage to brand image and customer/partner relationships • Out of the Box Third Party Integration • IT resources freed up to focus on core business • Comprehensive Auditing and Reporting • Assists in compliance with all security audits and mandates • Revenue Impact • Secure Access by Customer and Partners • Benefits of improved (and less expensive) customer acquisition and retention • Benefits of improved partner relationships

  20. Customer Case Studies

  21. 6th Largest Bank in the World • Provides services to 70,000 customers • Business Problem • Authentication and doorstep authorization to their service portal • Multi-domain sign-on to 3rd party content • Services Delivered • MDSSO • Self-registration • 3.5 months to rollout • Status • Live April 12 – expect 5,000 customers over next 3 months

  22. Leading Financial Services Company • Business Problem • Secure access to global extranet • Work Performed • Authentication & Authorization to global extranet • User registration • Integration Services • 4 months to rollout • Status • Live to 40,000 users

  23. European Financial Institution • Business Problem • Single portal that allows customers to sign-on and navigate seamlessly between financial services site and affiliate partners (convenience store, utilities company, etc.) • Services Delivered • MDSSO • Delegated Administration • Status • Currently in roll-out

  24. David MaislinSecurant Technologies Building a Unified Security Infrastructure for Web-Based Financial Transactions

More Related