midentity midentity Basic KOBIL midentity Basic Mobile, Secure and Flexible

Similar documents
Owner of the content within this article is Written by Marc Grote

Next Level Remote Access

The SafeNet Security System Version 3 Overview

CERN Certification Authority

Status: February IT Security Directive External Service Providers

SSH Communications Tectia SSH

KOBIL worldwide secure online banking. Take the challenge anytime, anywhere

Endpoint Protection with DigitalPersona Pro

Security Enhancements

Contents. SSL-Based Services: HTTPS and FTPS 2. Generating A Certificate 2. Creating A Self-Signed Certificate 3. Obtaining A Signed Certificate 4

ISA 2006 and OWA 2003 Implementation Guide

Power LogOn s Features - Check List

CryptoEx: Applications for Encryption and Digital Signature

keyon / PKCS#11 to MS-CAPI Bridge User Guide V2.4

Authentication Technology for a Smart eid Infrastructure.

XenApp 5 Security Standards and Deployment Scenarios

Security for Wireless Handhelds

SafeSign Identity Client Standard

Release Notes. NCP Volume License Server (Win32/64) 1. New Features and Enhancements. 2. Improvements / Problems Resolved. 3.

Encrypted containers for secure file transport

Key Protection for Endpoint, Cloud and Data Center

Sage 300 People & Web Self Service Technical Information & System Requirements

NCP Secure Enterprise macos Client Release Notes

Configuring SSL. SSL Overview CHAPTER

Public Key Infrastructures

Public Key Infrastructures

white paper SMS Authentication: 10 Things to Know Before You Buy

Configuring OpenVPN on pfsense

Meeting the requirements of PCI DSS 3.2 standard to user authentication

RSA Solution Brief. Providing Secure Access to Corporate Resources from BlackBerry. Devices. Leveraging Two-factor Authentication. RSA Solution Brief

Hassle-free banking in the DIGITAL AGE through NEXT-GEN. Technologies W H I T E PA P E R

IT Remote Working Policy

CVE / "POODLE"

Overview. Premium Data Sheet. DigitalPersona. DigitalPersona s Composite Authentication transforms the way IT

MU2a Authentication, Authorization & Accounting Questions and Answers with Explainations

Interface. Circuit. CryptoMate

Public Key Infrastructures

TPM v.s. Embedded Board. James Y

Data Security Double Package Sexy & Fresh: The new Steganos Safe 11 and Steganos Privacy Suite 11 are out!

An Overview of Secure and Authenticated Remote Access to Central Sites

How Next Generation Trusted Identities Can Help Transform Your Business

Remote Key Loading Spread security. Unlock efficiency

Security Digital Certificate Manager

Java Card Technology-based Corporate Card Solutions

Configuring SSL CHAPTER

EMBEDDED ENCRYPTION PLATFORM BENEFIT ANALYSIS

PKI Contacts PKI for Fraunhofer Contacts

Configuring the Cisco VPN 3000 Concentrator 4.7.x to Get a Digital Certificate and a SSL Certificate

Xceedium Xsuite. Secured by RSA Implementation Guide for 3rd Party PKI Applications. Partner Information. Last Modified: February 10 th, 2014

SecureDoc Disk Encryption Cryptographic Engine

BEST PRACTICES FOR PERSONAL Security

Overview of PBI-blockchain cooperation technology

Introduction. Security Edition User Guide

Paystar Remittance Suite Tokenless Two-Factor Authentication

PCI DSS Compliance. White Paper Parallels Remote Application Server

Put Identity at the Heart of Security

Configuring SSL. SSL Overview CHAPTER

Pulseway Security White Paper

CoSign Hardware version 7.0 Firmware version 5.2

SafeNet Authentication Client

SafeNet Authentication Client

Use Digipass two-factor authentication

CSE 565 Computer Security Fall 2018

Getting to Grips with Public Key Infrastructure (PKI)

SafeNet Authentication Client

IBM Client Security Software Deployment Guide Version Updated: January 7, 2005

SSL Certificate Based VPN

Overview. DigitalPersona Logon for Windows Data Sheet. DigitalPersona s Composite Authentication transforms

TECHNOLOGY LEADER IN GLOBAL REAL-TIME TWO-FACTOR AUTHENTICATION

Access Gateway 9.3, Enterprise Edition

Data Sheet. NCP Secure Enterprise macos Client. Next Generation Network Access Technology

The StrideLinx Remote Access Solution comprises the StrideLinx router, web-based platform, and VPN client.

PKI Credentialing Handbook

Access to RTE s Information System by software certificates under Microsoft Windows 7

Content and Purpose of This Guide... 1 User Management... 2

Protect Yourself Against VPN-Based Attacks: Five Do s and Don ts

Guide. A small business guide to data storage and backup

ECOS SECURE BOOT STICK

The Lord of the Keys How two-part seed records solve all safety concerns regarding two-factor authentication

IBM. Security Digital Certificate Manager. IBM i 7.1

How to Configure SSL Interception in the Firewall

CRESCENDO SERIES Smart Cards. Smart Card Solutions

SafeGuard Enterprise Installation manual

Microsoft. Designing, Deploying, and Managing a Network Solution for a Small- and Medium-Sized Business

Personal Security Environment (PSE) Token properties. Realisation of PSEs : Tokens. How to store private keys? Chapter 6.

This version of the des Secure Enterprise MAC Client can be used on Mac OS X 10.7 Lion platform.

Children s Health System. Remote User Policy

Kenna Platform Security. A technical overview of the comprehensive security measures Kenna uses to protect your data

WHITE PAPER Cloud FastPath: A Highly Secure Data Transfer Solution

HIPAA Compliance Checklist

RSA SecurID Ready Implementation Guide

Computers and Security

VMware View Upgrade Guide

Trusted Computing Group

BioPassport TM Enterprise Server

INCREASE APPLICATION SECURITY FOR PCI DSS VERSION 3.1 SUCCESS AKAMAI SOLUTIONS BRIEF INCREASE APPLICATION SECURITY FOR PCI DSS VERSION 3.

SafeNet Authentication Client

YubiKey Smart Card Minidriver User Guide. Installation and Usage YubiKey 4, YubiKey 4 Nano, YubiKey 4C, YubiKey 4C Nano, YubiKey NEO, YubiKey NEO-n

Meeting FFIEC Meeting Regulations for Online and Mobile Banking

Remote power and console management in large datacenters

Transcription:

KOBIL Mobile, Secure and Flexible

KOBIL is the ideal product for the mobile, yet safe transportation of your data and the protection of your digital identity. The perfectly integrated smartcard technology protects the user against the accidental loss or theft of the midentity device. At the same time, KOBIL is as easy to handle as a normal USB memory stick. The Challenge A basic prerequisite for secure mobile working consists in the securing of your digital identity and the highly secure protection of your data. In order to increase the work efficiency in modern companies, employees must be able to access their company s intranet with ease from any PC equipped with internet connectivity. Moreover, mobile workers should always be able to carry their sensitive data with them in highly secure form, and should be able to work on any PC, anywhere. To this end, both the data at issue and the corporate intranet need high security protection. Because customer address files, contract documents, tenders, balance sheets and corporate strategies, for instance, are contents that must not fall into the hand of an external party. That is why the access to highly sensitive data needs to be as safe as possible. Data storage on standard USB sticks is far from sufficient. Only persons who submit unique authentication should be able to access this sort of data. Faced with the lack of a suitable solution, many companies have outlawed the use of normal USB mass memories. This kind of measure, however, severely restricts the efficiency of the modern, globally active worker. Alternative Solution Technology Normal USB mass memories are unable to protect the data on a given device once that device has been stolen or misplaced. Nor are pure mass memories suitable for the protection of your digital identity. The reason is that security aspects play no more than a subordinate role for the development of such devices: Standard USB mass memories do not use smartcard technology for cryptographic data protection (through strong authentication and encryption). Naturally, this makes the representation of your digital identity in a forgery-safe manner impossible. This level of security frequently requires additional, third party components. Alternative solutions whose sole security feature is based on biometric characteristics are no universal cure either. Because in this case, biometrics can only be a supplementary security feature, and cannot take the place of your memorised PIN. In the event, for instance, that a correct fingerprint is mistakenly not recognised, you would have to fall back on the PIN entry as emergency solution anyway. Our Solution As a globally recognised vendor in the secure digital identity environment, KOBIL committed itself to the development of a mobile smartcard terminal with integrated flash memory and intelligent applications that would offer all the safety and mobility a user needs. This product is designed to protect the data of staff working offsite, as it enables them to communicate with the company headquarters in a manner that is entirely safe against interception, and easy to handle. Data stored on midentity are automatically subjected to high security encryption (3DES 168 bit and RSA up to 2048 bit via smartcard). We call this patented technology midentity. Since we always apply top standards to our products in terms of comfort, we developed KOBIL midentity 2

Basic specifically for comfortable mobile usage. While requiring no software or driver installation, enables users to carry their data securely with them in an integrated data safe. Where required, you may also use it to set up a highly secure SSL-VPN- or terminal server connection via public networks. It is the only system of its kind worldwide. All you need to do as a user is to insert your midentity into any PC, enter your personal PIN, and set up a secure connection to your company s intranet. Or you can easily access the data stored in your midentity secure data storage. In other words, data access presupposes two factors: Possession of the midentity device and knowledge of your personal PIN. Benefits KOBIL is the only solution that provides users with highly secure, yet mobile and comfortable, data security. The protection is effected through proprietary and patented KOBIL technology, based on smartcards and flash memory. The use of interchangeable smartcards results in a low personalisation overhead, thus cutting the costs for the entire rollout process. At the same time, users of benefit, as soon as the free software has been installed, from the same range of features that a pure smartcard solution would offer, such as a secure and easy Windows logon, secure remote access via IPSec-VPN and secure e-mail. If you buy the product upgrade, midentity Classic, also offers the additional features of Simple Sign-on and hard disk data encryption. This ensures a high-level security of investment. Applications Applications Without Prior Installation on the Client PC: > Mobile Secure Data Storage Provides high security transportation of sensitive data. Data access from any PC with just your PIN. > Secure Web Applications and Mobile SSL-VPN High security SSL client authentication, using the smartcard and certificates integrated into. A preconfigured SSL client in form of Mozilla Firefox browser is stored manipulationsafe on midentity. Technical Details Platforms > Windows 2000, SP 3 or higher > Windows XP, SP 1 or higher > Windows 2003 Server Standards > Microsoft Crypto API* > PKCS#11 > PC/SC (CCID)* > X.509 v3 certificates > SSL v3 > S/MIME* Cryptographic Processes > RSA 2048 bit > 3DES 168 bit Simple Sign-On > Dialog boxes** > Web forms** Interface > USB 2.0 High Speed > USB 1.1 High Speed Dimensions 74mm x 22mm x 12mm (L x W x H) Weight > 13.5 g Available Sizes S, M, L, XL, XXL (64, 128, 256, 512, 1024 MB) * Requires installation of basic software ** Only in combination with Classic upgrade 3

> Secure Terminal Server Sessions Combined with Mobility High security Citrix and Windows terminal server sessions, using the smartcard and certificates integrated in. User mobility is provided on the basis of preconfigured clients that are stored manipulation-safe on midentity. Applications Requiring Previous Installation of the midentity Basis Software on the Client PC: > Windows Logon High security logon onto the Windows network with just your PIN, both with and without domain. > Remote Access and Network Logon High security access in VPN, firewall, SAP R/3 and Novell NDS environments using two-factor authentication and a combination of smartcard technology and public key cryptography. > Secure Communication Digital signatures and encryption create privacy, validity and manipulation safety in e-mail communication and other applications. Features > One-Time Password System The system includes an authentication server for validating the one-time passwords generated by midentity, as well as a management system. > Update Capability Easy update-enabled firmware will always keep your system up-to-date. > Flexible Personalisation through Replaceable Smartcard Personalisation is efficiently performed by replacing the smartcard. Additional Options > Protection Against Unsafe USB Sticks Third party port blocker software blocks the use of unsafe USB sticks. Making midentity the only device authorised for mobile data storage. > Digital Rights Management Optional digital rights management for custom assignment and control of access privileges. > Company Card Building access control and time tracking, using contact-less RFID technology (undergoing evaluation). > Compliance with German Signature Act Secure PIN input through a patented virtual PIN pad. Other Functions can be upgraded any time to midentity Classic to include a number of extra functions. 4

References Various future-oriented and globally renowned enterprises are already using KOBIL. A case in point, DATEV tax consultants and auditors use the KOBIL midentity secure data storage for mobile data security. At the same time, the integrated Mozilla Firefox browser provides them with access, via SSL-VPN connection (requiring no prior installation), to other DATEV online applications using public networks, of course. DG-Verlag, a German service provider mainly supplying Volksbank and Raiffeisenbank savings banks, offers key account customers a KOBIL midentity version with the in-house proficash home banking software already integrated in the device. This grants the user comfortable and mobile high security access to the own current account. This solution received the ISSE 2004 award for innovative technology. information is as safe as it would be in a Swiss bank vault, except that users can pocket this their very own data vault and carry it along, anywhere they go. Customers also include Deutsche Telekom, who has already deployed KOBIL midentity in a variety of sectors. User groups include anyone from executives to mobile consultants. Thanks to its patented technology, KOBIL midentity is the only solution to satisfy this customer s combined requirements of mobility, flexibility and top security. Customers who have equipped their employees with KOBIL midentity to provide them with mobile secure data storage capability include the RWE energy group and the secret service of a European country. The largest Swiss private bank uses KOBIL midentity as their only authorized USB mass memory. For the bank, it is of the essence that even the last shred of doubt regarding the security and privacy of customer information be removed. Such 5

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback