OpenOTPMulti-Factor Authentication
Secure User Authentication for Univention Corporate Server (UCS 4)
Thomas BrandtstaetterSynargos [email protected]
About RCDevs
Specialized in next-generation multi-factor authentication and PKI.
Cutting-edge solutions for world-wide customers ranging from SMEs to large corporations in the IT, financial, healthcare and government sectors.
Growing partner-network
RCDevs provides its partners with high-security, easy-to-implement and cost-effective solutions enabling them to become regional market leaders
in mobile security solutions
Flagship Solution: OpenOTP
Made in EU
About Synargos
Information Security Engineering (since 1992)
Applied cryptography with Hardware Security Modules (HSM)
Main focus: data privacy (individuals, enterprise), HSM2Cloud
HSM firmware extensions (design and implementation)
Cryposerver Appliances (based on HSM)
Applications using HSM:
User Authentication & Authorization (ChipTAN)
Key-Management Systems (beyond PKI)
Transaction Security / Secure Mail Gateways
Security future
Main requirements: Availability, Integrity, Privacy
Open Source Software can reduce security risks
Cryptography can solve „some“ problems, but not all
But: Security without a proven „Chain of Custody“ is not possible
Also important:
Transparency: standards, certification, audits
Overall process quality:
Purchasing Hardware / Software
IT-operations
OpenOTP – Multi-Factor Authentication Solution
Vendor: RCDevs SA
Enterprise Security with Multi-Factor, IAM, SSO
One-Time Passwords (OTP) and Universal Second Factor (FIDO-U2F)
Multiple Vendor Hardware (e.g.YubiKey)
Software Token (e.g.Google Authenticator)
Extentions: PAM, Radius, SAML, TiQR (QR & dig.signature), Mobile PKI
For UCS: certified and integrated into APP-Center
Maintainer: Synargos GmbH
Release: FEB 2016
OpenOTP – Licensing & Services
Free for up to 40 users
Licensing schemes: permanent and subscription
Maintenance
Professional support services
OpenOTP – outstanding features
Flexible Integration into existing customer environments
Generic Policy Management
High Availability (Active-Active Cluster)
Hardware-Cryptography with HSM
High Performance and Scalability
OpenOTP – inital App for UCS V4
WebADM Control Center
OpenOTP Autentication Server
Self-Service Applications
Web-Services (OwnCloud, SugarCRM, RoundCube, Wordpress etc..)
OpenOTP – PAM App for UCS V4
Extends Pluggable Authentication Modules (PAM) with 2-Factor
Authentication
SSH
FTP
Others possible
OpenOTP – upcoming Apps for UCS V4
SAML
RADIUS
VPN Integration
Cloud applications
TiQR (QR-Code and digital signatures)
Citrix VMware
Enterprise Wifi
On demand
Rock'n Roll will never ...
Rockstar 1 28.12.2015 R.I.P.
Rockstar 2 10.01.2016 R.I.P.
Rockstar 3 18.01.2016 R.I.P.
UserID & Password WHEN ?
Vielen Dank für Ihre Aufmerksamkeit!
Kontakt
Thomas Brandtstaetter Charly RohartSynargos GmbH RCDevs [email protected] [email protected] www.rcdevs.com