Authshield
Uploaded by
23 SLIDES
316 VUES
230LIKES

AuthShield - Two Factor Authentication

DESCRIPTION

AUTHSHIELD LABS “Authentication Security at it’s best

1 / 23

Télécharger la présentation

AuthShield - Two Factor Authentication

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. AuthShield™ – Two Factor Authentication “The threats from within are increasing on a daily basis. 78% of all information security breaches happen internally”

  2. Case Studies “Information Security at it’s best”

  3. Unique Case Studies Mail Solutions Database Queries - Workflow Management Private and Confidential -INNEFU LABS SAP GUI and Net weaver

  4. AuthShield integration with Mail Server • User enters User Name & Password • Request forwarded to AuthShield Frontend Plugin • Second factor Authentication validated from Authentication server • On validation user name and password request forwarded to Exchange Private and Confidential - INNEFU LABS

  5. User enters User Name and Password on Web Portal OWA checks for whether OTP Prompt has to be shown or not 1 In case Yes, user is prompted for OTP else request is forwarded to exchange Microsoft Exchange with Authentication Frontend Plugin OTP is validated from AuthShield Server 2 4 On OTP validation, original / corrupted request is forwarded to exchange AuthShield Authentication Server 3 Active Directory

  6. SAP GUI Integration • 2FA integration with SAP GUI • Request forward to AuthShield Frontend server • Second Factor of Authentication checked with Authentication Server • User Name and Password are authenticated as normal Private and Confidential - INNEFU LABS

  7. Process Flow User enters User Name and Password in his client as normal. Request sent to AuthShield frontend 1 Checks for OTP requirement from Authentication server. If yes it sends a notification to the handset / Desktop of the user 4 SAP Servers On OTP validation, original / junk request is forwarded to SAP servers 5 2 3

  8. Database Queries – Workflow Management • For specific users, when they fire a Database query – • A PUSH notification is generated and sent to the reporting manager • The notification contains details on – • User making the request • Details on the request • The query is only processed if the reporting manager approves the query • The same architecture can be replicated from Database to any other workflow Private and Confidential -INNEFU LABS

  9. Other Case Studies Web Enabled Applications Windows Logon with / without Domain Private and Confidential -INNEFU LABS Critical Intranet Applications including Core Banking Solutions SSL VPN – Juniper / Citrix Login to Remote Servers Wireless Networks

  10. Web Enabled Applications (Source Code Available) • Two Factor Authentication with – • Web Enable Application (PHP Based) • Inhouse built Finance Portal (Java Based) • Source Code available with the Client • Changes made to the Authentication Module of the client application – • AuthShield login API’s integrated with the application Private and Confidential -INNEFU LABS

  11. Private and Confidential -INNEFU LABS

  12. Process User Name, Pwd, OTP User Name, Pwd Access True Authentication Private and Confidential -INNEFU LABS User Name, OTP True Authentication

  13. Internet Banking Solution • Client wanted Two Factor Authentication with – • Reset Password Options • Source Code available with the Client • Changes made to the Authentication Module of the client application – • Innefu’s 2FA API’s were integrated with the application • Users were provided One Time Password via SMS any time a user needs to reset his password Private and Confidential -INNEFU LABS

  14. Process User Name, Pwd, OTP User Name, Pwd Access True Authentication Private and Confidential -INNEFU LABS User Name, OTP True Authentication

  15. Windows 7, XP with MS AD 2008 • Client wanted Two Factor Authentication with – • Windows XP with MS Active Directory 2003 • Windows Vista with MS Active Directory 2003 • Changes made to the Login dll of Windows • Innefu’s server module was installed on Active Directory • Seamless integration done with Active Directory Private and Confidential -INNEFU LABS

  16. Process User Name, Pwd True Authentication Active Directory True Authentication Private and Confidential -INNEFU LABS User Name, OTP AuthShield Server

  17. Integration with VPN • Client wanted Two Factor Authentication with – • SSL VPN • Authentication in VPN was done via RADIUS server • AuthShield’s server inbuilt RADIUS server was used to authenticate the user • All requests forwarded to the IAS server which authenticates the request Private and Confidential -INNEFU LABS

  18. Process User Name, Pwd True Authentication Active Directory True Authentication Private and Confidential -INNEFU LABS User Name, OTP AuthShield Server

  19. What We Offer Private and Confidential -INNEFU LABS

  20. Prevent Identity Theft!! – Count on Private and Confidential -INNEFU LABS

  21. THANK YOU Private and Confidential -INNEFU LABS QUESTIONS WELCOME INNEFU LABS PVT. LTD www.innefu.com +91-11-47065864 / 66 contact@innefu.com, info@innefu.com

More Related