authshield two factor authentication
DESCRIPTION
Authshield offers the user SMS Token or Voice Token as a form of authentication where a SMS with the One Time password is sent to the user or a call made to his handset where a user just presses a button on their keypad to authenticate.TRANSCRIPT
AUTHSHIELD™ – TWO
FACTOR AUTHENTICATION
“The threats from within are increasing on a daily basis. 78% of all information security breaches happen internally”
CASE STUDIES
“Information Security at it’s best”
UNIQUE CASE STUDIES
Database Queries - Workflow Management
Mail Solutions
SAP GUI and Net weaver
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
User enters User Name & Password
Request forwarded to AuthShield Frontend
Plugin
Second factor Authentication validated from
Authentication server
On validation user name and password request
forwarded to Exchange
Priv
ate
an
d C
on
fiden
tial -
INN
EF
U L
AB
S2
/27
/20
15
AUTHSHIELD INTEGRATION WITH
MAIL SERVER
User enters User Name
and Password on Web
Portal
OWA checks for whether
OTP Prompt has to be
shown or not
In case Yes, user is
prompted for OTP else
request is forwarded to
exchange
OTP is validated from
AuthShield Server
Microsoft Exchange with
Authentication Frontend Plugin
AuthShield Authentication Server
Active Directory
On OTP validation,
original / corrupted
request is forwarded to
exchange
1
2
3
4
SAP GUI INTEGRATION
2FA integration with SAP GUI
Request forward to AuthShield Frontend server
Second Factor of Authentication checked with
Authentication Server
User Name and Password are authenticated as
normal
Priv
ate
an
d C
on
fiden
tial -
INN
EF
U L
AB
S2
/27
/20
15
SAP Servers
User enters User Name and
Password in his client as
normal. Request sent to
AuthShield frontend
Checks for OTP requirement
from Authentication server.
If yes it sends a notification
to the handset / Desktop of
the user
On OTP validation,
original / junk request is
forwarded to SAP servers
1
2
3
4
5
PROCESS FLOW
DATABASE QUERIES – WORKFLOW
MANAGEMENT
For specific users, when they fire a Database query –
A PUSH notification is generated and sent to the
reporting manager
The notification contains details on –
User making the request
Details on the request
The query is only processed if the reporting manager
approves the query
The same architecture can be replicated from
Database to any other workflow
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
OTHER CASE STUDIES
Web Enabled Applications
Windows Logon with / without Domain
Critical Intranet Applications including Core Banking Solutions
SSL VPN – Juniper / Citrix
Login to Remote Servers
Wireless Networks
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
WEB ENABLED APPLICATIONS (SOURCE CODE
AVAILABLE)
Two Factor Authentication with –
Web Enable Application (PHP Based)
Inhouse built Finance Portal (Java Based)
Source Code available with the Client
Changes made to the Authentication Module of the
client application –
AuthShield login API’s integrated with the application
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
PROCESS
User Name, Pwd, OTP User Name, Pwd
True Authentication
True Authentication User Name, OTP
Access
INTERNET BANKING SOLUTION
Client wanted Two Factor Authentication with –
Reset Password Options
Source Code available with the Client
Changes made to the Authentication Module of the
client application –
Innefu’s 2FA API’s were integrated with the application
Users were provided One Time Password via SMS any
time a user needs to reset his password
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
PROCESS
User Name, Pwd, OTP User Name, Pwd
True Authentication
True Authentication User Name, OTP
Access
WINDOWS 7, XP WITH MS AD 2008
Client wanted Two Factor Authentication with –
Windows XP with MS Active Directory 2003
Windows Vista with MS Active Directory 2003
Changes made to the Login dll of Windows
Innefu’s server module was installed on Active
Directory
Seamless integration done with Active Directory
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
PROCESS
User Name, Pwd
Active Directory
AuthShield Server
True Authentication
True Authentication
User Name, OTP
INTEGRATION WITH VPN
Client wanted Two Factor Authentication with –
SSL VPN
Authentication in VPN was done via RADIUS server
AuthShield’s server inbuilt RADIUS server was used
to authenticate the user
All requests forwarded to the IAS server which
authenticates the request
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
PROCESS
User Name, Pwd
Active Directory
AuthShield Server
True Authentication
True Authentication
User Name, OTP
WHAT WE OFFER
S.no Features AuthShield Others
1 One Touch Authentication
2 PKI Token using smart Phones
3 Reusable response based on IP and
time duration
4 Indigenous Tokens thereby offering co-
branding opportunities and instant
turnaround time
5 Customization as per client’s
requirements
6 Superior support at cheaper costs
7 Unparalleled experience of working
with large Government and corporate
clients
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS
PREVENT IDENTITY THEFT!! –
COUNT ON
THANK YOU
QUESTIONS WELCOME
INNEFU LABS PVT. LTD
www.innefu.com
+91-11-47065864 / 66
[email protected], [email protected]
Priv
ate
an
d C
on
fiden
tial -IN
NE
FU
LA
BS