Secure Network Access

Softlock Secure Network Access Solution provides a secure and reliable connection to local and remote network resources and applications. Using hardware token (PKI/OTP) that holds the user’s credentials is the basic idea of the solution.

Secure Network Access

Network resources are now important and essential part of any enterprise's business. Each enterprise has a network resource that can be used by all/some network users.

Softlock solution includes two alternatives:

  1. PKI Based Secure Network Access.
  2. OTP Based Secure Network Access.

PKI Secure Network Access

This solution is intended to provide a hardware authentication technique to local network resources through secure domain login.

Benefits

By using Softlock secure Network access PKI solution, the following benefits will acquired:

High Security

A number of security mechanisms are employed, helping significantly to eliminate the risk of fraud, attacks and misuse from unauthorized individuals and hackers. The user ID is stored on secure Hardware that cannot be duplicated. The hardware is protected by user PIN/Fingerprint to assure only the token owner will use it. 

Easy Administration

Softlock PKI solution for Network access domain login provides easy and simple method to control the access to the network using Certificate Revocation List (CRL). CRL enables the admin to prevent a user from access the network temporarily or permanently.

Compatibility

Softlock Secure Network PKI access solution is compatible with different operating systems so that it can be used in different network architectures.

Ease of use

Softlock Secure Network PKI Access solution provides easy way to end users to access the network. User just plug the token and enter the token PIN to access.

Standards Complied

Softlock PKI network access solution supports the X.509 standards and CRL standards version 3.0. The solution supports the PKCS#11 for hardware security devices (token or smart card).

 

OTP Secure Network Access

One-Time Password Today is one of simplest and most popular forms of two-factor authentication for securing network access.

Benefits

high Security

OTP RADIUS system allows the user information to be stored on one host, minimizing the risk of security loopholes.

Two reasons cause this ultimate security. The first is the use of the OTP authentication technology. And the second is the strong secure communication between the system entities, which achieved by the Radius protocol. Hence two major security technologies are integrated together to produce the OTP Radius System. Softlock Solution solves the problem of password caching.

Ease of use

One click/touch; one response. The user has no need to identify himself through multiple steps, just submit his username and OTP and make one click/touch, where the domain passes the submitted credentials and identities, return back with respond of Accept or Reject.

The OTP solution requires no driver to be installed at the user side.

Interoperability

Softlock Secure Network Access OTP solution is easy to integrate and work within any network infrastructure. This is due to the fact of using standard protocol (RADIUS).

Flexibility

The authentication is easy and fixed method for any domain access trial.

Traceability

Softlock Secure Network OTP Access solution provides access tracking method that the system admin will use to view the users activity. OTP solution uses log file to do that.

High Performance

The OTP server responses quickly to authentication requests received from domain servers.

High availability

Being based on Linux server, Ubuntu server, then the OTP server is more reliable for long term operation.

Maintainability

Using the available integrated QA tests to troubleshoot and maintain the OTP server components.

Also, with existing testing applications to test the OTP server. Also, the ability to resynchronize token during authentication.

Certification

OTP RADIUS server is OATH certified for both TOTP and HOTP tokens. Also, PSKC encrypted files are supported for secure seed exchange.

Secure VPN Access

For enterprises with remote users that tend to use network resources through Virtual Private Network (VPN), it is very risky to depend on the static username/password.

AS VPN provides access to critical and important resources related to organization, there is a need for high security credentials to authenticate users as only authorized users can make use of company resources and documents.

With Softlock VPN solution only User token, know token Pin and enroll his fingerprint (if use biometric version) will be able to access VPN.

The secure VPN access solution has two alternatives:

  1. Secure PKI VPN Access.
  2. Secure OTP VPN Access.

 

Secure PKI VPN Access

This solution uses PKI smart token to access the VPN.

Description

Softlock VPN access solution works on two sides: client and server side.

Server side will be server machine with Enterprise certificate authority that is able to issue certificate for smart card logon this certificate authority is integrated with Active directory in order to authenticate user using certificates generated by enterprise CA.

Routing and Remote Access service at server side is to be configured to use smartcard authentication instead of using password authentication.

Benefits

By using Softlock secure VPN access PKI solution, the following benefits will acquired:

High Security

A number of security mechanisms are employed, helping significantly to eliminate the risk of fraud, attacks and misuse from unauthorized individuals and hackers. The user ID is stored on secure Hardware that cannot be duplicated. The hardware is protected by user PIN/Fingerprint to assure only the token owner will use it. 

Easy Administration

Softlock PKI solution for Network access domain login provides easy and simple method to control the access to the VPN using Certificate Revocation List (CRL). CRL enables the admin to prevent a user from access the network temporarily or permanently.

Compatibility

Softlock Secure Network PKI access solution is compatible with different operating systems so that it can be used in different network architectures.  

Ease of use

Softlock Secure VPN PKI Access solution provides easy way to end users to access the network. User just plug the token and enter the token PIN to access.

Standards Complied

Softlock PKI VPN access solution supports the X.509 standards and CRL standards version 3.0. This solution supports the PKCS#11 for hardware security devices (token or smart card).

 

Secure OTP VPN Access

Description

OTP RADIUS system provides solution for user authentication using the one time password OTP method with the back end system at the server side. It allows the end user to perform his authentication through one click/touch.

Benefits

Security

OTP RADIUS system allows the user information to be stored on one host, minimizing the risk of security loopholes.

Two reasons cause this ultimate security. The first is the use of the OTP authentication technology. And the second is the strong secure communication between the system entities, which achieved by the Radius protocol. Hence two major security technologies are integrated together to produce the OTP Radius System.  The solution solves the problem of password caching.

Ease of use

One click/touch; one response. The user has no need to identify himself through multiple steps, just submit his username and OTP and make one click/touch, where the VPN passes the submitted credentials and identities, return back with respond of Accept or Reject. The OTP solution requires no driver to be installed at the user side.

Flexibility

The authentication is easy and fixed method for any VPN access trial.

High Performance

The OTP server responses quickly to authentication requests received from VPN servers.

High availability

Being based on Linux server, Ubuntu server, then the OTP server is more reliable for long term operation.

traceability

Softlock Secure Network OTP Access solution provides access tracking method that the system admin will use to view the users activity. OTP solution uses log file to do that.

Maintainability

Using the available integrated QA tests to troubleshoot and maintain the OTP server components.

Also, with existing testing applications to test the OTP server. Also, the ability to resynchronize token during authentication.

Certification

OTP RADIUS server is OATH certified for both TOTP and HOTP tokens. Also, PSKC encrypted files are supported.

Secure Network Access

Network resources are now important and essential part of any enterprise's business. Each enterprise has a network resource that can be used by all/some network users.