This page contains a Flash digital edition of a book.
C O O L S T U F F Identity Management


COMPLIANCE MANDATES The Novell Identity Manager 4 family of prod-


ucts helps businesses with compliance man- dates and identity challenges. Integrated reporting in the Novell Identity Manager 4 family enhances visibility into compliance across both in-house and cloud deployments. It keeps data and systems secure on both sides of the fire- wall with enterprise-wide separation of duties (SoD), consistent policy enforcement and automated reports. New reporting fea- tures let administrators see a user’s identity and access rights, or report on a user’s actions and provisioning history. www.novell.com


PASSWORD MANAGEMENT Quest Software’s Quest


One Identity Solution encompasses a full spectrum of authenti- cation, authorization, administration and compliance solutions to address some of the most challenging iden- tity and access man-


agement problems, including: single sign on, directory consolidation, audit/compliance, strong authentication, records management, provisioning and privileged account management. Quest One delivers multi-factor alternatives to traditional user- name/password authentication and addresses many of the pressing password management issues facing enterprises, such as the high cost of password resets, inconsistency of password policy across platforms and applications, and the problems of multiple, disparate passwords. www.quest.com


MANAGING SECURITY POLICIES Cyber-Ark Software’s


Privileged Identity Management (PIM) Suite version 6 fea- tures On-Demand Privileges Manager, which provides or- ganizations with a


way to uniformly manage security policies, compliance, reporting and administration for all privileged users and accounts from a common user interface. The system enables organizations to im- plement an effective “least privilege” policy and reduce existing insider threat vulnerabilities by provisioning super-users’ rights on an as-needed basis, at the individual command level. By del- egating access to super-user privileges, such as those used by Unix/Linux administrators and root users, organizations can manage and secure privileged access and individual command


26 SECURITY MATTERS • JULY/AUGUST 2010


execution. In addition, the On-Demand Privileges Manager records this detailed command level activity in order to better track session activity for security, auditing and forensic pur- poses. www.cyber-ark.com


UNAUTHORIZED USE


Viion’s Sentinel Sign-Off 1.2 solution secures computer work- stations from unauthorized use. Using patented computer vision algorithms, Sentinel Sign-Off automatically locks a workstation when a user leaves, eliminating the possibility of a user ac- cessing confidential electronic data. It also uses facial recog- nition to automatically unlock the workstation upon the user’s return, improving productivity over password or fingerprint authentication methods. It uses off-the-shelf web cameras and supports a wide-range of strong-authenti- cation, SSO and other identity management solutions. www.viionsystems.com


IDENTITY THEFT White Sky’s ID Vault is a


client-based software product specifically de-


signed to provide security for consumers when they bank and shop online. ID Vault provides protection against existing, new and emerging threats on the Internet by protecting users’ cre- dentials on the PC, automating the log-in process and delivering safe access to online sites. ID Vault remembers account infor- mation and logs users in without typing. It encrypts usernames, passwords and credit card information to a secure location on a PC, accessible only to the user. ID Vault also monitors more than 8,000 financial and shopping sites, providing an extra layer of protection. ID Vault is available free for use for up to four online accounts. www.idvault.com


MULTI-FACTOR AUTHENTICATION PhoneFactor implements multi-factor authen-


tication using a user’s telephone as a second factor of authentication. The authentication process begins as a normal login to the system, in which the user supplies a user name and password. If the supplied creden- tials are valid, the system initiates a phone call to the user’s registered phone number. The user then answers the phone and indicates whether or not the authentication should suc- ceed by pressing the # sign or an optional PIN on their phone. Once the user acknowledges the authentication attempt via the phone call, the system completes the pending authentication and the login proceeds as normal. If the user does not request authentication, action can be taken to lock the user account and prevent an attack, and a real-time fraud alert can also be generated. www.phonefactor.com


Page 1  |  Page 2  |  Page 3  |  Page 4  |  Page 5  |  Page 6  |  Page 7  |  Page 8  |  Page 9  |  Page 10  |  Page 11  |  Page 12  |  Page 13  |  Page 14  |  Page 15  |  Page 16  |  Page 17  |  Page 18  |  Page 19  |  Page 20  |  Page 21  |  Page 22  |  Page 23  |  Page 24  |  Page 25  |  Page 26  |  Page 27  |  Page 28  |  Page 29  |  Page 30  |  Page 31  |  Page 32
Produced with Yudu - www.yudu.com