VASCO Data Security - A World Leader in Strong AuthenticationVASCO IDENTIKEY Server 3.2

Cost-effective solution to help authenticate remote and local users.

VASCO IDENTIKEY

Overview:

IDENTIKEY Server 3.2 is an authentication software suite for organizations of all sizes that want to address their concerns about secure access with a state-of-the-art solution

Being able to work remotely is one of the most valuable - and most vulnerable - features in a corporate network. Today one simply cannot afford to leave important systems and valuable data unprotected. IDENTIKEY Server 3.2 is the simplest and most cost-effective solution to help authenticate remote and local users accessing to the corporate network. Using an individually assigned DIGIPASS authenticator, remote and local users will be able to proof their claimed identity quickly and easily through a dynamically generated One-time password (OTP). In a similar way, electronic signatures can be generated and used for secure validation of financial transactions.

Features

  • Strong DIGIPASS based two-factor authentication
  • e-Signature for transaction validation
  • Support for EMV-CAP and Hardware Security Module (HSM)
  • Support of RADIUS and Microsoft IIS web server based clients (Outlook Web Access, Citrix Web Interface)
  • Support for Internet hosted applications through SOAP
  • Active Directory Integration, ODBC database support
  • Support of LDAP backend authentication environments
  • Enhanced features for DIGIPASS and user management
  • Delegated Administration, multiple administration interfaces
  • Virtual DIGIPASS (over SMS) support, also as backup
  • Support of Wireless protocols & the return of RADIUS attributes
  • RADIUS accounting request auditing

Functions

  • Verification of authentication requests (OTP, signature)
  • Web-based administration GUI offers all administration functions in a single browser window.
  • Central administration of users, DIGIPASS authenticators and authentication policies
  • Software DIGIPASS provisioning (DIGIPASS for Mobile)
  • Comprehensive audit system, with storage in a database or text file and an optional live audit viewer.
  • Activity Reporting with output in XML/HTML format
  • Validation of DIGIPASS Authentication for Windows Logon for locally connected users, in online and offline more

Benefits

  • Verification of authentication requests (OTP, signature)
  • Web-based administration GUI offers all administration functions in a single browser window.
  • Central administration of users, DIGIPASS authenticators and authentication policies
  • Software DIGIPASS provisioning (DIGIPASS for Mobile)
  • Comprehensive audit system, with storage in a database or text file and an optional live audit viewer.
  • Activity Reporting with output in XML/HTML format
  • Validation of DIGIPASS Authentication for Windows Logon for locally connected users, in online and offline more

Key Features:

Online Banking

Addressing the need for e-signatures in commercial and banking web-based applications, such as online shops, B2B portals and online retail banking applications, IDENTIKEY Server 3.2 offers strong authentication and validation of transaction signatures with support of EMV-CAP. The optional HSM support allows OTP and signature validation inside a tamper-proof security module.

Remote Access in Enterprise Security

With the increasing number of mobile employees and home-based staff, the need for remote access to corporate applications and resources has surged.

Network administrators face new challenges to fulfill growing requests for flexible yet secure access to in-house applications such as Outlook Web Access or Citrix Web Interface as they need to be protected with strong authentication.

IDENTIKEY Server 3.2 provides the answer to these demands by providing secure authentication for remote access and login to web-based applications.

Software As a Service

A number of industry analysts have highlighted the emerging trend of Software as a Service. Also known as on-demand applications or hosted applications, this new form of software deployment is slowly replacing the more traditional, desktopbased software.

IDENTIKEY Server 3.2 can be integrated using SOAP to any Internet application to protect the user login with strong authentication.

Strong, Two Factor Authentication

The combination of IDENTIKEY Server 3.2 and DIGIPASS provides a strong form of user authentication compared to reusable static passwords. IDENTIKEY Server 3.2 can be easily implemented in any IT environment and provides a turnkey solution that can be operational in a very short time.

Transaction Validation

IDENTIKEY Server offers highly secure electronic signature validation for banks and financial institutions by implementing EMV-CAP support and support for Hardware Security Module (HSM) to validate the signature in a secure and tamper-proof environment.

Interoperability At The Front-End

IDENTIKEY Server 3.2 uses a non-intrusive method of enabling DIGIPASS authentication. It can be integrated using RADIUS, with Microsoft IISbased applications such as Outlook Web Access or Citrix Web Interface, or with any internet application using SOAP.

Multi-Platfrom at the Backend

Offering a broad choice of supported platforms, IDENTIKEY Server 3.2 can be conveniently used on most common server operating systems, such as MS Windows and Linux, both in 32 and 64 bit versions. Additional backend static password verification can be performed using RADIUS servers or LDAP backend servers.

Active Directory Integration

The highest convenience and efficiency when adding strong authentication is achieved by using the Active Directory service. The DIGIPASS related data is stored with the users in the Active Directory.

Wide Range of Supported Databases

IDENTIKEY Server 3.2 also supports a wide range of ODBC compliant databases for data storage and ships standard with PostgreSQL (32-bit).

Web-Based User Interface

All administration functions are available through a web-based user interface, allowing remote administration and creating new opportunities for managed security services providers.

Auditing and Reporting

The audit console monitors incoming and outgoing events on the IDENTIKEY Server 3.2. Informational statistics gathered by the audit console provides critical details necessary to effectively manage a remote access environment. Extensive XML or HTML-formatted reporting is provided for helpdesk troubleshooting, system- and security auditing and accounting purposes.

Technical Specifications:

Supported Environment
Windows
Operating System
  • Windows Server 2003 (32 & 64 bit) with SP1 and above, or R2.
  • Windows Server 2008 (32 & 64 bit)
  • Windows Server 2008R2 (64 bits)
  • SBS 2003, 2008
  • Windows 7
  • Windows XP SP1*
  • Windows Vista*

* Can be used for very small deployments as well as for testing and demonstration purposes
Operating System (Linux version)
  • Novell Suse Linux Enterprise Server 10
  • Ubuntu 8.04 Server Edition
  • Redhat Enterprise Linux 5
  • 32- and 64-bit versions
Virtual Images
  • VMWare ESX Server version 3.5
  • VMWare Player version 2.5
  • VMWare Workstation version 6.5
Data store (DBMS)
  • Oracle 11g (32 & 64-bit)
  • Microsoft SQL server 2005, 2008 (32&64-bit)
  • IBM DB2 8.1 (32-bit) and 9.1 (64-bit)
  • PostgreSQL 8.2.5 (32 & 64-bit)
Data store (AD)

The following Active Directory systems are supported:

  • Windows Server 2003 AD
  • Windows Server 2008 AD
LDAP Back End Authentication

The following Authentications systems are supported:

  • Windows Server 2003 AD
  • Windows Server 2008 AD
  • Novell e-Directory 8.7+
  • Microsoft ADAM (WS2003 R2)
  • IBM TAM Directory Server 6.2+
HSM

Safenet Protect Server Gold
Compliance to Standards
RADIUS RFC 2865 and RFC 2866

Wireless

 EAP, PEAP

Authentication
  • DIGIPASS OTP (Challenge / Response, Response Only)
  • DIGIPASS Signature (transaction validation)
  • OATH (event based – time based)
  • EMV-CAP

Documentation:

PDF File
Download the VASCO IDENTIKEY Server 3.2 Data Sheet (.PDF)