CRYPTOCard Launches AuthEngine, a Two-Factor Authentication SDK That is Used to Build Token Management and Authentication Services into Any Application or Networking Environment, at RSA Conference (Booth 2705).AuthEngine Can Be Implemented Inside Existing Applications, Websites, Databases, And Directories Eliminating The Need To License, Install, or Manage An Authentication Server A device used in network access control. It stores the usernames and passwords that identify the clients logging in, or it may hold the algorithms for token access (see authentication token). OTTAWA, Ontario & LONDON -- CRYPTOCard (www.cryptocard.com) launches AuthEngine, a solution that embeds token-based, two-factor authentication The use of two independent mechanisms for authentication; for example, requiring a smart card and a password. The combination is less likely to allow abuse than either component alone. See authentication. in any custom application or environment, including websites, databases, and directories, at the RSA Conference The RSA Conference is a Cryptography-related conference held annually in the San Francisco Bay Area. The RSA Conference started in 1991 as a forum for cryptographers to gather and share the latest knowledge and advancements in the area of Internet security. . AuthEngine provides application developers with complete control over the authentication system The combination of authentication server and authenticator, which may be separate devices or both reside in the same unit such as an access point or network access server. The authentication server contains a database of user names, passwords and policies, and the authenticator physically provisioning, enforcement, and workflow entirely within the custom application. This is a major improvement in productivity and cost over traditional APIs that simply build a bridge between the custom application and a stand-alone authentication server. With AuthEngine there is never a need to purchase, install, and support a separate authentication server. AuthEngine will appeal to: * Web application developers, especially those building sophisticated workflow, subscription services and on-line self-service applications or using custom directories and databases. With AuthEngine, token-based authentication becomes "just another method" * ISVs that want to improve their competitive edge and create additional revenue streams by adding, managing, or even licensing token authentication from within their product offering * High Performance Computing environments that want to enforce token authentication in conjunction with Kerberos "AuthEngine makes sense as it enables organizations [software vendors, application developers, etc.] to add best-of-breed authentication technology from a recognized market leader," said Andrew Kellett, Senior Research Analyst, Butler Group. "Many organizations simply don't have the expertise required to develop an authentication solution, and so see it as an area where there is an obvious business advantage to partnering with a specialist." Digician, a provider of specialized web applications for the insurance industry, was an early user of AuthEngine. Digician's applications deal with critical, sensitive information, so security was of extreme importance. "AuthEngine strengthens Digician's authentication process, and is the most developer-friendly of all applications out there," commented Julius Ang, CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. , Digician. Another early AuthEngine adopter is Clinivate. Clinivate's Clinitrak[R] provides behavioral health Behavioral health was first used in the 1980's to name the combination of the fields mental health and substance abuse. As an example, an organization serving both mental health and substance abuse clients might refer to its practice as behavioral health or providers, clinicians, and managers with secure real-time online billing, productivity, and outcome tracking capabilities. Clinivate understood that it was critical that confidential medical records could not be accessed by an unauthorized user. "AuthEngine provided by far the simplest and most cost-effective method for Clinivate to integrate two-factor authentication as part of its Clinitrak[R] solution and further compliance with HIPAA (Health Insurance Portability & Accountability Act of 1996, Public Law 104-191) Also known as the "Kennedy-Kassebaum Act," this U.S. law protects employees' health insurance coverage when they change or lose their jobs (Title I) and provides standards for patient health, ," said Steve Terui, VP Development, Clinivate. "Everything Clinivate required came in one piece which made integrating two-factor authentication a simple process," Terui continued. "Clinivate is proud that AuthEngine has enabled it to provide behavioral health providers with an electronic medical records and billing solution that includes two-factor authentication." "The whole point of AuthEngine is to recognize that most people already have 95% of the components they need for strong authentication in place," said Bill LaHam, V.P., Products & Business Development, CRYPTOCard, Inc. "AuthEngine simply provides the remaining 5% and ironically requires less coding than building a bridge to a stand-alone authentication server," LaHam continued. "AuthEngine isn't for everybody, and if simply enforcing authentication at a VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. gateway or RADIUS authentication is adequate, then a stand-alone solution such as CRYPTO-Server may be a better choice, but for those that control their applications or want provisioning and workflow processes that revolve around Verb 1. revolve around - center upon; "Her entire attention centered on her children"; "Our day revolved around our work" center, center on, concentrate on, focus on, revolve about the business, not the tokens or authentication server, AuthEngine is hard to beat." AuthEngine is available to qualified developers and institutions. For more information, please visit CRYPTOCard at the RSA Conference in Booth 2705, visit www.cryptocard.com, or contact info@cryptocard.com. About CRYPTOCard, Inc. CRYPTOCard is a leader and innovator in the Network Authentication Industry. Its multi-awarded Two-Factor Authentication options include both a server based or 'product' solution (CRYPTO-Shield) and a Managed Authentication Service (CRYPTO-MAS). The combination allows organizations of any size and means to adopt a strong authentication policy. CRYPTOCard is unique in the industry in its commitment to ensuring its products/services work with any common network architecture including OS compatibility (Microsoft (Nasdaq: MSFT MSFT Microsoft (stock symbol) MSFT Movimento Sociale Fiamma Tricolore (Italy) MSFT Multi-Stage Fitness Test MSFT Master of Science in Family Therapy MSFT Macalester Students for Fair Trade ) Windows, Linux, Mac OS X), web-server flexibility (IIS (Internet Information Services) Microsoft's Web server. IIS runs under the server versions of Windows, adding HTTP server capability to the Windows operating system. , Apache), and database options (Active Directory, LDAP (Lightweight Directory Access Protocol) A protocol used to access a directory listing. LDAP support is implemented in Web browsers and e-mail programs, which can query an LDAP-compliant directory. , Open Directory, etc). Add to that the outstanding 'out-of-the-box' interoperability with many top industry network solutions including Citrix, Checkpoint (Nasdaq: CHKP CHKP Check Point Software Technologies Ltd. (stock abbreviation, AMEX) ), and Cisco (Nasdaq: CSCO CSCO Cisco Systems Incorporated (stock symbol) CSCO Chief Supply Chain Officer ), and you begin to see how CRYPTOCard has grown since its origin in 1989 to become a thriving enterprise doing business in more than 70 countries. CRYPTOCard, CRYPTO-Server, CRYPTO-Admin, CRYPTO-Deploy, CRYPTO-Logon, CRYPTO-VPN, AuthEngine and CRYPTO-Web are trademarks of CRYPTOCard, Inc. Other products mentioned herein may be trademarks and/or registered trademarks of their respective owners. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion