CRYPTOCard Solutions

CRYPTO-MAS is a managed service that provides positive identification of network users for companies that do not have the desire or resources to manage it themselves. CRYPTO-MAS customers receive a strong positive identification solution without requiring the expertise or extra costs associated with implementing and managing a solution and the associated infrastructure. CRYPTOCard is the only two-factor authentication developer to offer this managed solution.

Key CRYPTO-MAS Benefits

Increased Security

CRYPTO-MAS offers the strongest two-factor authentication with the core capabilities provided by CRYPTO-Shield in a managed service:

Easy to Implement

CRYPTO-MAS requires no additional investment in infrastructure, nor does it require your employees to learn additional technical skills. Once registered to MAS, you can be up and running with a secure, reliable, strong authentication mechanism in a matter of hours.

Low Up-front Costs

Because you are not purchasing any software or servers to implement your authentication solution, your up-front costs are significantly reduced. CRYPTOCard offers the CRYPTOMAS service for an annual user-based service fee, which means it can be funded out of operating expenses rather than capital expenses. This provides predictability in your expenditures and scalability as you grow.

High level of Service

CRYPTOCard’s Service Level Agreement provides you with the protection of a high level of service, without the requirement of staffing a help desk with technically sophisticated employees. The Service Desk is available to provide advice, answers, and assistance in planning, implementing, and managing your CRYPTOCard authentication service.

CRYPTO-MAS is hosted in a Class A data center with high availability and redundancy, at no extra cost to you. To duplicate this level of service with an in-house solution could be very costly.

CRYPTO-MAP

CRYPTOCard’s Managed Authentication Portal (CRYPTO-MAP) provides a secure, easy-to-use interface for provisioning users, assigning tokens and other administrative tasks. from this user-friendly interface you can manage users and tokens yourself without having to contact CRYPTOCard.

Multiple AuthNodes

CRYPTOCard’s authentication service is activated by pointing your authentication node (AuthNode) at the CRYPTO-MAS Server for servicing authentication requests. CRYPTO-Server supports a wide range of AuthNodes, including VPN concentrators, SSL VPNs Firewalls and IIS and Apache websites.

CRYPTO-Shield enables organisations to positively identify individuals, with the strongest two-factor authentication in the industry, before giving them access to applications, data and networks. CRYPTOCard’s complete authentication solution consists of a suite of applications designed for implementing and operating two-factor authentication within an organization. CRYPTO-Shield provides everything that is required for securing Remote Access, Domain and Desktop Logon or Web Portal access with two-factor authentication.

CRYPTO-Shield is compatible with any existing network and offers the most advanced token technology in the industry. It is the only two-factor authentication solution that will operate seamlessly in a real world mixed OS network. Along with multi-platform support CRYPTO-Shield provides extremely flexible configuration options with no need for LDAP changes.

With an easy-to-use administration console, administrators are not required to have specific training to operate CRYPTO-Shield and can customize CRYPTO-Shield to meet any security requirement.

CRYPTO-Shield customers benefit from reducing the risk associated with remote access and web-based business processes. This positive identification solution increases compliance with industry regulations, at a price all businesses can afford.

Flexibility

CRYPTO-Shield has the ability to adapt to any type of network infrastructure an organization has in place, and is available for Windows, Linux, or Mac platforms. Customization tools are available to mold the functions of CRYPTO-Shield to meet specific security policies and satisfy multiple compliance requirements.

Low Total Cost of Ownership

Many vendors have obsolescence built into their products, such as tokens that expire after 3 years or license contracts that need to be renewed annually. CRYPTOCard offers tokens with a 5-year warranty that never expire due to replaceable batteries. CRYPTO-Shield is also based on a perpetual license agreement, which requires that the license only needs to be purchased once. No annual license renewals required, just a low cost support and maintenance contract.

Simplicity

CRYPTOCard prides itself in offering the easiest and most user-friendly positive identification solutions in the industry. CRYPTO-Shield is extremely easy to set up as the LDAP does not need to be changed and directories can be directly imported into CRYPTO-Shield. The administration console allows for easy user and token management. Due to excellent usability and documentation, administrators do not require advanced technical skills to manage the system.

Higher Security

CRYPTO-Shield provides organizations with the ability to implement and operate the strongest two-factor authentication solution in the industry. Organizations can initialize their own tokens, therefore keeping the seed keys confidential. Encryption algorithms can be as strong as AES 256, and one-time password can be as strong as 8 character Base64 – the most secure type of password available. CRYPTO-Shield also offers the option of attaching digital signatures for non-repudiation of signed documents or transactions.

Greater User Satisfaction

Not only will organizations get the benefits listed above, the end users will be happier not having to remember complex passwords and will place fewer password related helpdesk calls.

A token is a network access ‘key’ that is most easily compared to a bank card – to gain access to a protected network a user must a have a token – in the same way they need a bank card to use an automatic banking machine. The token is the physical and first factor of the two-factor authentication process, sometimes referred to as the ‘something only you have’.

A token, while cryptographically complex and, from an engineering perspective, a truly high-technology security device, really has a simple job – it is used to generate a new one-time password for every network login attempt. (Each password can be used just once and then will never work again.)

To prevent a problem with a lost or stolen token being used inappropriately, the token is protected by a secret PIN known only to the end user. The PIN is the second factor of authentication often referred to as the ‘something only you know’.

Token Types

CRYPTOCard makes a wide selection of tokens that offer different user benefits. An organization can select the token most appropriate for their user base and security policies.

Tokens are available in two main types – hardware tokens and software tokens. Hardware tokens are physical devices that, with the simple push of a button, generate a new one-time password. Configurable in many ways these tokens can deliver the highest degree of security.

A Software token, as the name suggests, is an application that can be accessed in several ways. The token can reside on a user’s computer desktop (ideal and cost effective for anyone who only needs access from one computer) or ‘portable’ software tokens are available as Smart Card and USB devices as well as being available for mobile equipment like our Software Token for Blackberry – which literally turns your Blackberry into your password generating device.

Once in place the token-enabled CRYPTOCard two-factor authentication solution ensures that you can provide strong protection for your online assets while managing the competing priorities of:

End Users

CRYPTOCard’s 2FA solution is embraced by end users. Easier (and obviously MUCH more effective) than having to remember (and change) random passwords, end users appreciate something that actually simplifies their logon process.

Security Administrators

We normally only have to point out that they’ll never have to troubleshoot another forgotten password to win the favour of Network/Security Admins. But they are also quick to appreciate the extensively configurable variables that CRYPTO-Tokens allow.

CFO

Rather than juggling budgets and trading-off technology, the CRYPTOCard solution typically pays for itself (in helpdesk cost savings alone) in just a matter of months. Add to that the fact that our tokens are permanent (some competitors require, by contract, that tokens be replaced every 2-5 years) with user-changeable batteries and simple one-time licensing fees… and it all adds up to a happy balance sheet.

Everyone else…

Because every organization is different and users within each company can have vastly different needs, CRYPTOCard Tokens are available in a wide range of formats and styles to provide the utmost in convenience, portability, durability, interoperability and multi-role functionality.