Velkommen
@entrustdatacard
SMS PASSCODE 2018
Det bedste Multi-Faktor Authentication system i hele galaksen
Bio.
Gunnar Hermansen, born 13. April 1970Twitter: @GundarisLiving in Copenhagen, Denmark
Fan of : • Star Wars• Lego
Working for EntrustDatacard• Working with IT for many many years• More bla bla, well just look it up on linkedIn• You can stop reading now.
This is what half a ton of tokens look like. There was exactly 520 Kilograms.
MORE THAN
5.000HAPPY CUSTOMERS
10+
Ye
ars
in b
usin
ess
PROTECTING
1Mill+AD USERS
IN
50+COUNTRIES
UDVIKLING
&
SUPPORT
SMS PASSCODE
Hvorfor stærk brugervalidering ?
Hvorfor stærk brugervalidering ?
Der findes 2 typer virksomheder!
Dem der ved de er blevet hacket og dem der ikke ved at de er blevet hacket.
81% (2017) 63% (2016) af alle databrud sker vedsvage/genbrugte/stjålne passwords
SMS PASSCODE 2018Det venligste system i
universet !
SMS PASSCODE 2018Det venligste system i universet !
Bruger venligtsuper nemt at bruge
SMS PASSCODE 2018Det venligste system i universet !
Installations venligtsuper nemt at installere
SMS PASSCODE 2018Det venligste system i universet !
Administrations venligt Super nemt at administrerer
SMS PASSCODE 2018Venlighedsopsumering
Bruger venligt – super nemt at bruge
Installations venligt – super nemt at installere
Administrations venligt – Super nemt at administrerer
iOS, WindowsAndroid
Credential Provider (Windows 7, Windows 8, and Windows 10)
VDI (View, XenDesktop, Terminal Services)
Web Sites (IIS, RD Web etc.)
OWA (2010/13/16)
VPN’s and SSL VPNCitrix Netscaler, reverse proxy VMware View and more
Citrix Web Interface
AD FS 2.0, 3.0, 4.0, SAML etc.
iOS, WindowsAndroid
ISA / TMG Web sites
Authentication Clients
Adaptive Multi-Factor
Authentication
1 licens
Citrix Web Interface
RADIUS Protection
Web Site Protection
Windows Logon / RD
Services
Microsoft ISA/TMG
Citrix Receiver
Cloud Application Protection
Active Sync Device
Provisioning
Samme overlegen brugeroplevelse på tværs af alle enheder og systemer
SMS PASSCODE 2018Hvordan sendes engangskoden (OTP)
Flash eller standard SMS fra lokalt modemHTML eller text baseret E-mail
Flash eller standard SMS via Web service
Voice call back eller App via Web Service
SMS PASSCODE App
SMSC/SMPP
SMS PASSCODE 2018Hvordan sendes engangskoden (OTP)
Flash eller standard SMS fra lokalt modem
HTML eller text baseret E-mailFlash eller standard SMS via Web service
Voice call back eller App via Web Service
SMS PASSCODE App
SMSC/SMPP
SMS PASSCODE 2018Hvordan sendes engangskoden (OTP)
Flash eller standard SMS fra lokalt modem
HTML eller text baseret E-mail
Flash eller standard SMS via Web serviceVoice call back eller App via Web Service
SMS PASSCODE App
SMSC/SMPP
SMS PASSCODE 2018Hvordan sendes engangskoden (OTP)
Flash eller standard SMS fra lokalt modem
HTML eller text baseret E-mail
Flash eller standard SMS via Web service
Voice call back eller App via Web ServiceSMS PASSCODE App
SMSC/SMPP
SMS PASSCODE 2018Hvordan sendes engangskoden (OTP)
Flash eller standard SMS fra lokalt modem
HTML eller text baseret E-mail
Flash eller standard SMS via Web service
Voice call back eller App via Web Service
SMS PASSCODE AppSMSC/SMPP
SMS PASSCODE 2018Hvordan sendes engangskoden (OTP)
Flash eller standard SMS fra lokalt modem
HTML eller text baseret E-mail
Flash eller standard SMS via Web service
Voice call back eller App via Web Service
SMS PASSCODE App
SMSC/SMPP
SMS PASSCODE 2018Hvordan sendes engangskoden (OTP)
Flash eller standard SMS fra lokalt modemHTML eller text baseret E-mail
Flash eller standard SMS via Web serviceVoice call back eller App via Web Service
SMS PASSCODE AppSMSC/SMPP
Subscription licens giver adgang til SMS PASSCODE cloud service
SMS & voice call back
SMS PASSCODE 2018Web Service Dispatchere
2BM
3 Hong Kong (Chinese)
3 Hong Kong (English)
A1
AMD Telecom
Any-SMS
AQL
ASPSMS
AVEA
Ballou
bSmart
Cardboardfish
Carrot.no
CellSynt
Clever SMS Gateway
Clickatell
Clickatell platform
CM
CM (Free trial)
Computopic
CPSMS
CSoft
CTM SMG gateway
EasiSMS
Ecall
EG
Ejoin Acom
Ejoin Acom (JSON)
Esendex
Etracker
FoxBox
Gateway API
HQSMS
Infoflex
Informaxion
InMobile
Kannel SMS Gateway
Labyrintti
Lekab
Link Mobility (pswincom) Nor
LinkMobility/CoolSMS
Linus
LiveAll
Mailsms
Mblox
MCS-iSMS
MessageBird
messagefactory.fi
MessageNet
Mimer Mobile
Mindmatics
Minicall / Generic Mobile SE
Mobication
Mobile Services
Mobistar
Mobitech
Mollie.nl
Nexmo (deprecated for voice calls)
Nimbow
OneWaySMS Singapore
Online City
Ooredoo
OSB
Permit
Posta G?vercini 2017
Qmani
Red Oxygen
Remote24-custom
Retarus
RouteSms
RouteSms India
sendQuick
sendsms.ro
Skebby
SMS TEKNIK
SMS4U
SMSBroadcastAustralia
SMSEagle
SMSFlatrate.net
SMSGateway.dk
SMSGlobal
SMSN
Spryng
SureSMS
Sveve.no
SwissCom
SwissCom SMS Large
SwissPhone
Tactus SMS Gateway
Teletopia
Telia
Tellus-talk
Telstra
TextAnywhere
Textmarketer
T-Mobile Austria
Txty
UMS
ViaNett
Vodafone Iceland
WebSMS.at
Whispir.io
Wireless services (NL)
XGATE
Xura (Acision/Mindmatics)
SMS PASSCODE 2018Alternativ til at sende en kode (OTP)
• Hardware token
• Cloud keys
• Soft token
• Permanent statisk kode
• Midlertidig statisk kode
• By-pass
SMS PASSCODE 2018Alternativ til at sende en kode (OTP)
• Hardware token
• Cloud keys
• Soft token
• Permanent statisk kode
• Midlertidig statisk kode
•Adaptivt By-pass via trusted IP i f.eks. Danmark for VPN Klient
SMS PASSCODE 2018OTP
Cloud Keys Voice-Call Hard-/Soft TokensSMSApp E-mail
Dispatch Plugin Modules
Sessionsspecifik Ikke-sessionsspecifik
SMS PASSCODE 2018
High Passcode Security & DemoOur One-Time Passcodes are:
The RNGCryptoServiceProvider generates cryptographically strong random numbers and has completed FIPS-140-2 evaluation.
Challenge-based
Real-time
Session-specific (avoid phishing)
Time-restricted(default = 2mins)
Character configuration (default 6 characters)
Cryptographically strong random codes
(FIPS-140)
Day and time restrictions
Start and end dateGeoFencing
Lock down by country or IP
LEGO
LEGO
AD Group User Integration Policy User Group Policy
Authentication Policy
Dispatch Policy
Passcode Policy
Token Policy
2
3
Users are identified in User Integration Policies
Permissions are defined in User Group Policies
One-click Microsoft AD or LDAP integration1
Adaptive User Policies – 3rd Generation thinkingAdministrators mapping of user and application security policies
Access without OTP in home country
Access without OTP from Trusted location
No access permitted
World wide access with OTPManagement
White collars
R&D
External IT Consultant
Blue collars
Externals
Groups / Applications
• Automatiserer brugervalidering af e-mail klient på tablets, smartphones etc.
• MS Exchange plug in der anvender Exchange Quarantine for ActiveSync
• Brugere kan sikkert godkende et nyt device – mulighed for at benytte Adaptive Authentikerings logikker.
• Arbejder side om side med flere MDM løsninger.
Secure Device Provisioning – den glemte indgang
Secure Device Provisioning – den glemte indgang
• A number of log in attempts with an incorrect AD Password will lock you out for 5 min. – and a message is sent
• By clicking the URL the user is taken to the Password Reset Site
• After being securely authenticated by SMS Passcode®, the user can reset his/her AD Password
• Password Change – When the AD Password is about to expire the users gets a notification (per SMS/TXT) including a link to the Reset sit.
• Separated Front-end website and backend service with delegated rights, plus MFA ensures the security level needed
SMS PASSCODE Proaktiv Password Reset
SMS PASSCODE MFA – Password Reset Modul
SMS PASSCODE Self Service Web site
SMS PASSCODE MFA – Scripting & Customizing
API & Power Shell – integrate your App
• HTTP/HTTPS API included
• Authenticate Users in your Application with MFA
• Send Out Messages to Users through our channels
• User notification capabilities
• PowerShell Scripts for Reporting & Administration
• Integrate the system in your HelpDesk
https://www.entrustdatacard.com/solutions/cloud-based-multi-factor-authentication
Most important new features in SMS PASSCODE 2018
• Role based administration
• Secure Device Provsioning supportere nu også Exchange Online
• Secure Device Provsioning har eget website
• Kopiering af eksisterende politikker
• SMSC / SMPP dispatch
• SMS PASSCODE Mobile App (IOS & Android) nu med flash funktionalitet
• Radius Auth med self lookup af domain
• Subscription licens inkl. Dispatch
• PowerShell powered silent installation
Step Up User Authentication
(Explicit High Risk Confirmation)
Adaptive Authentication
(Session and Pattern Monitoring)
User Identity Proofing
(Establishing Genuine User)
Device Reputation
(Trust the Device) - www.entrustdatacard.com/dr
Where biometrics likely have a role
Provisioning a Secure Credential
(Trusted Identity Foundation)
By the end of 2022, 70% of enterprises will combine biometrics with analytics… Gartner
Multi-layered security – the future of MFA
https://www.entrustdatacard.com/solutions/cloud-based-multi-factor-authentication
Top Related