SafeNet Authentication Solution
Need for Multi-Factor Authentication
Most authentication methods utilize user IDs and passwords to authenticate user access to systems. However, once the password is known to a third party, it loses its validity.
There have been reports of damage caused by unauthorized access by various methods such as use of ID and password combinations leaked from other web services or unauthorized logins based on speculation.
To tackle these issues, more and more companies are recognizing the need for and adopting multi-factor authentication, which uses multiple factors to authenticate the identity of the user in addition to user ID and password.
What is Multi-factor Authentication?
Multi-factor authentication is achieved by combining two or more of the following three factors for authentication.
- Knowledge: Authentication with knowledge known only to the individual (password, passphrase, PIN, etc.)
- Possession: Authentication with a possession that only the individual possesses (digital certificate, one-time password token, IC card, etc.)
- Achieved with SafeNet authentication
- Inherence: Authentication by physical characteristics of the person (fingerprints, veins, retinas, etc.)
Overview of SafeNet Authentication Solution
SafeNet Authentication offers diverse line-up of solutions to meet the clients' authentication requirements.
Line-up
Category | Product/Solution Name | |
---|---|---|
Authentication Device | USB Token | eToken5110 |
eToken5300 | ||
Smart Card | IDPrime MD | |
Reader/Writer | Contact IC card reader | ID Bridge |
Middleware | Token Management Client | SafeNet Authentication Client (SAC) |
Cloud Services | Cloud Authentication Service | SafeNet Authentication Service (SAS) |
SafeNet Trusted Access (STA) | ||
Authentication devices for SAS/STA | OTP 110 (Hardware Token) | |
Mobile PASS (Software Token) | ||
OTP Display Card (Card Type) | ||
Mobile PASS+ (Single-tap Push Authentication) | ||
GrIDSure (Grid Certification) |
eToken5110
Private keys and certificates in the PKI (Public Key Infrastructure) can be securely stored in USB tokens.
Since it has a built-in IC chip, the signature process can be performed without taking the private key out of the IC chip.
eToken5300
In addition to the security features of the smart card (IC card), the eToken5300 has a built-in presence detection on its side.
Users are required to touch the token when using internal private keys and certificates.
Since the key in the token is not available unless the user touches the token, it is also effective in combating remote access malware.
IDPrime MD
Private keys and certificates in the PKI (Public Key Infrastructure) can be stored securely in the smart card.
Since it has a built-in IC chip, the signature process can be performed without taking the private key out of the IC chip.
ID Bridge
USB connection type smart card reader.
SafeNet Authentication Client (SAC) (token management client)
Client middleware for managing SafeNet authentication products (USB tokens/smart cards).
- Main functions: Token initialization, password policy setting, certificate import, etc.
- Support available in Japanese language
- Available for Windows/Linux/MacOS
SafeNet Trusted Access (STA) (Cloud Access Management Service)
A cloud service that provides authentication, access management, and single sign-on (SSO) for cloud applications.
- Provides two-factor authentication functionality using SAS
- Smart single sign-on to access all authorized cloud applications
- Optimize security and mitigate leak risks through granular access policies
- Administrative interface (single pane) for centralized access control
- Full visibility into cloud access events to facilitate compliance
Two-factor authentication with SafeNet Trusted Access (STA)
- Multi-factor authentication can be implemented in a short period of time
- Authentication methods: OTP, SMS, mobile authentication, matrix (grid) authentication
Authentication devices available for SafeNet Trusted Access (STA)
Either one of SafeNetOTP 110, MobilePass, Mobile Pass+, or GrIDSure is provided free of charge per user upon signing up for STA.
SafeNet OTP 110
Hardware type OTP (One Time Password) product.
- Option to select between time synchronous authentication or event synchronous authentication
- Product is provided free of charge for the number of users if used with STA
- Needs to be purchased separately for use with SAS
*If you wish to use the device for AWS MFA, you will need to purchase it directly from Amazon.
Mobile PASS
Software type OTP (One Time Password) product.
- Option to select between time synchronous authentication or event synchronous authentication
- Supports iOS, Android, Blackberry, and Windows desktop
Mobile PASS+
Two-way authentication with mobile app authentication
- Authentication request is sent to the smart phone application and login is completed when the request is accepted
- Supports OS, Android and Windows 10
GrIDSure
Grid Authentication
- OTP is generated when user enters the numerical values according to the pattern determined by the user
- Ideal for protecting web-based applications
OTP Display Card
IC card type OTP (One Time Password) product.
- Time synchronous authentication
- E-Paper adopted to make numbers on the display easy to read
*This product must be purchased separately.
We also offer authentication solutions other than SafeNet. Please contact us for details.
- *All other company names, product names, service names, etc. mentioned herein are trademarks of their respective owners.