Post to Twitter |
Comments (7) |
Views (2360) |
PinSafe is a form of multi-factor authentication which is easier to deploy and more cost effective than its token based competitors. It also integrates seamlessly with the NetScaler for both SSL VPN and AAA for Web Applications.
It works by providing the user a customized "one time" image on the login page. The image employs character rotation and will use a range of fonts and backgrounds to provide resistance to OCR attacks. Contained within the image, is a security string which can be made up of numbers, characters or even a mixture of the two. Place holders in the image help the user to extract their one-time image code. So in the example below, a PIN of 4359 would yield a one-time code of 3125.
The default image has place holders to help the user extract the one-time code, but other, pattern based images can also be used. The examples below show the numeric (eg telephone) keypad pattern as well as a more random pattern. These images can even be branded for individual customers requirements.
For more information goto http://www.swivelsecure.com/
Comments (7)
Jul 02
Anonymous says:
This looks more like strong authentication than multi-factor authentication. It ...This looks more like strong authentication than multi-factor authentication. It combines "something you know" with "something you know" so by definition is not multi-factor. However, its resistance to keystroke logging is nice.
When the security string is sent to a mobile device ("something you have"), then it can be considered multi-factor.
Jul 02
Rene Vester says:
The need for an easier form of 2-factor authentication is difinitely needed in t...The need for an easier form of 2-factor authentication is difinitely needed in these times, a solution which i have gone with a lot of times is SMS PASSCODE which basically moves the token functionality onto the Cellphone that we are all carrying around anyway
It makes a lot of sense to look at different and new options in the area of 2-factor authentication.. RSA for example has a strong suite of products but for the customers in need of easy to deploy, easy to administrate and high security i think there are a lot of interesting solutions out there
I did a review of the SMS PASSCODE product if you want to learn more: http://www.renevester.com/2008/09/a-new-approach-to-2-factor-authentication-on-vpn-and-citrix-solutions/
There are a lot of solutions out there, what i find most important is:
Rene Vester
Jul 02
Rob Allen says:
The example shown demonstrates 'strong authentication' for the reasons mentioned...The example shown demonstrates 'strong authentication' for the reasons mentioned in the comment. However PINsafe has the ability use SMS and also a Java based J2ME phone application.
The SMS facility provides a similar user experience to TURing, in regards to requiring a PIN code to extract a OTC; thereby preventing access to a secured system in the event of the phone being stolen.
The SMS feature also allows multiple strings to be delivered, saving on SMS costs and any network coverage issues. When multiple strings are sent to a phone, the login screen informs the user which string to use next to make a smooth and easy user experience.
Having the ability to use both 'strong authentication' and true 'Two factor authentication' enables PINsafe to meet any authentication requirement. Integration guides for OWA, Citrix, and other leading VPN solutions are available on the Swivel website.
Rob Allen
Swivel Secure
Jul 02
Anonymous says:
Its a nice solution for technically minded users, but "ordinary" end users do fi...Its a nice solution for technically minded users, but "ordinary" end users do find this confusing. It is a bit like the old "battleships" game but with turing images, or a MENSA test. The SMS offering would be a lot more useful, as it is much simpler for non technically minded users to use.
Simplicity is all.
Jul 03
Rob Allen says:
We believe PINsafe is easy to use and there are hundreds of thousands of end use...We believe PINsafe is easy to use and there are hundreds of thousands of end users, in all different types of employment, who tend to agree.
Most ordinary users are familiar with the process and many banks use something similar in asking for letter x and y of their password. PINsafe also can use a graphical image so position is remembered rather than a PIN, as shown in the original post.
PINsafe can send an OTC direct to a mobile phone by SMS, emulating other weaker solutions, but using the PIN protection it offers an additional layer of security against interception etc.
Rob Allen
Swivel Secure
Jul 03
Anonymous says:
Looks good. Does anyonr know what is the pricing model? I mean what is the price...Looks good. Does anyonr know what is the pricing model? I mean what is the price per user?
Sep 25
Anonymous says:
The pricing for the licenses depends on how many licenses you need. The license ...The pricing for the licenses depends on how many licenses you need. The license is perpetual, as long as you have a support agreement.
Ordinary standard support is firmware, upgrade, software etc., and support in the hours between 8.00 - 16.00 through mail or tel. They also offer 24/7 support if this is requested.
Thats it. License + support = your price.
In addition to this you can buy physical/virtual (vm) appliances and professional services on-site/remote depending on your requirements and need for assistance integrating the solution.
Anonymous says: