Authshield
Uploaded by
31 SLIDES
397 VUES
310LIKES

Authshield lab- 2 factor authentication solutions

DESCRIPTION

AuthShield supports diverse user bases by allowing users to authenticate with whatever form factor suits most. Some users prefer AuthShield Mobile authentication (AuthShield Push, AuthShield Mobile Token, SMS / Call token) while other prefer to authenticate via a hard or soft token.

1 / 31

Télécharger la présentation

Authshield lab- 2 factor authentication solutions

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. AuthShield™ – Two Factor Authentication “The threats from within are increasing on a daily basis. 78% of all information security breaches happen internally”

  2. Innefu Labs “Information Security at it’s best”

  3. About Us • Information Security R&D Organization specializing in creating unique technologies and products • All technologies are indigenous and have been evaluated and approved by multiple Government Agencies • Empanelled with DRDO for providing - • Two Factor Authentication • Social Media Monitoring • Link Analysis and Pattern Recognition Private and Confidential -INNEFU LABS

  4. Contd. • More than Six years of experience in Information Security • Served key clients in Private and Public sector • Unique and Innovative technologies including – • AuthShield - Two Factor Authentication • Chronos – WhiteListing Ani-Virus • Innsight – Social Media Analysis • InteleLinx - Link Analysis and Pattern Matching Private and Confidential -INNEFU LABS

  5. Patent Pending Technologies • AuthShield 2FA – • One Touch Authentication integrated with Mail solutions including POP / IMAP protocol • One Touch Authentication integrated with Database update queries for workflow management Private and Confidential - INNEFU LABS

  6. Some of Our Government Clients Indian Army Ministry of Home Affairs JK Police Ministry of Defense Private and Confidential -INNEFU LABS Chandigarh Police National Technical Research Organization Delhi Police UP Police AP Police National Investigation Agency

  7. Some of our Corporate & PSU’s Clients Private and Confidential -INNEFU LABS

  8. Private and Confidential -INNEFU LABS

  9. Hacker’s - Point of Attack Private and Confidential -INNEFU LABS

  10. Methods Of Attack Trojans Targeted Phishing Private and Confidential -INNEFU LABS SIM Cloning Mobile Hacking Viruses

  11. Map the physical identity of the user to the server (Two Factor Authentication) • Identify the user based on – • Something he knows (user name / password) • Something in the users possessions

  12. Different Tokens USB Token Hard Token SMS Token Soft Token Mobile Token Push Token

  13. One Touch Authentication – Ease of convenience • Application installed on Smart Phone to receive ‘Push’ notifications from AuthShield Server • Anytime a user wants to log in, AuthShield server sends a ‘PUSH’ Notification to the app installed on user’s mobile phone

  14. Contd. • Notifications contains the following info – • IP Address making the request • Date • Time • Location • User has the option to Approve / Deny the request • In case the user ‘Approves’ the request, user is automatically validated • User ‘Does NOT’ see or enter the OTP in any application

  15. Private and Confidential -INNEFU LABS

  16. Advantages • Hackproof Tokens - Protect against Hacking attacks against systems as well as Mobile phones • No effect by server access • User gets to know if his credentials have been compromised • Uses the fast growing smart phone industry in the country for validating users Private and Confidential -INNEFU LABS

  17. Our Other Tokens • Indigenous Token • Customizable as per client’s requirements • Generates a new password after every 96 seconds • Indigenous Token • Customizable as per client’s requirements • Available for all smart phones Private and Confidential -INNEFU LABS

  18. Contd. Private and Confidential -INNEFU LABS • OTP sent as a SMS • Options to chose between alpha-numeric / numeric passwords • Indigenous Token • Desktop Token available on all OS

  19. Management Panel • Complete Management control with the Client’s IT Team • Management Portal to • Add / Delete users • Associate a Token with a User • De-associate a Token with a User • Lock a lost Token • Transfer a Token to another User Private and Confidential -INNEFU LABS

  20. Case Studies “Information Security at it’s best”

  21. Unique Case Studies Mail Solutions Database Queries - Workflow Management Private and Confidential -INNEFU LABS SAP GUI and Net weaver

  22. Integration – with POP/IMAP • 2FA integration with Mail servers – • Web Interface • Desktop Clients (Microsoft Outlook etc) • Smart Phones • Seamless integration • Prompt for OTP generation – • Only when IP changes • Specific duration of time passes • PUSH Notification to replace OTP Private and Confidential -INNEFU LABS

  23. 2FA Integration with POP / IMAP User enters User Name and Password in his POP/IMAP Client and forwards to Load Balancer 1 2 4 5 Private and Confidential -INNEFU LABS Mail Servers 6 6 3 Back End Servers 6 6

  24. Database Queries – Workflow Management • For specific users, when they fire a Database query – • A PUSH notification is generated and sent to the reporting manager • The notification contains details on – • User making the request • Details on the request • The query is only processed if the reporting manager approves the query • The same architecture can be replicated from Database to any other workflow Private and Confidential -INNEFU LABS

  25. SAP GUI Integration • 2FA integration with SAP – • SAP Netweaver and SAP GUI • User enters – • User Name • OTP and Password • User Name and OTP are authenticated by AuthShield Server • User Name and Password are authenticated as normal Private and Confidential -INNEFU LABS

  26. 2FA Integration with SAP User enters User Name and OTP + Password in SAP GUI 1 2 4 Private and Confidential -INNEFU LABS SAP Servers 5 3

  27. Integration Points for Banking Industry Internet Banking Credit Card Transaction Validation Private and Confidential -INNEFU LABS Critical Intranet Applications including Core Banking Solutions Login to Remote Servers Mutual Funds Accounts

  28. Internet Banking Solution • Client wanted Two Factor Authentication with – • Reset Password Options • Source Code available with the Client • Changes made to the Authentication Module of the client application – • Innefu’s 2FA API’s were integrated with the application • Users were provided One Time Password via SMS any time a user needed to reset his password Private and Confidential -INNEFU LABS

  29. Why Give us a Chance! Private and Confidential -INNEFU LABS

  30. Prevent Identity Theft!! – Count on Private and Confidential -INNEFU LABS

  31. THANK YOU Private and Confidential -INNEFU LABS QUESTIONS WELCOME INNEFU LABS PVT. LTD www.innefu.com +91-11-47065864 / 66 contact@innefu.com, info@innefu.com

More Related