In computer security, authentication is the process of attempting to verify the digital identity of the sender of a communication such as a request to log in. The sender being authenticated may be a person using a computer, a computer itself or a computer program. A blind credential, in contrast, does not establish identity at all, but only a narrow right or status of the user or program.
In cryptography, a public key infrastructure (PKI) is an arrangement that binds public keys with respective user identities by means of a certificate authority (CA). The user identity must be unique for each CA. This is carried out by software at a CA, possibly under human supervision, together with other coordinated software at distributed locations. For each user, the user identity, the public key, their binding, validity conditions and other attributes are made un-forgeable in public key certificates issued by the CA.
A smart card, chip card, or integrated circuit card (ICC), is defined as any pocket-sized card with embedded integrated circuits which can process information. This implies that it can receive input which is processed - by way of the ICC applications - and delivered as an output. There are two broad categories of ICCs. Memory cards contain only non-volatile memory storage components, and perhaps some specific security logic. Microprocessor cards contain volatile memory and microprocessor components. The card is made of plastic, generally PVC, but sometimes ABS. The card may embed a hologram to avoid counterfeiting.
A Hardware Security Module (often abbreviated to HSM, also often called a Host Security Module) is a plug-in card (PCI) or external device (RS232/SCSI/IP/USB) for a general purpose computer and may even be an embedded system itself.
The job of the HSM is to securely generate and/or store long term secrets for use in cryptography and physically protect the access to and use of those secrets over time. Generally these are private keys used in Public-key cryptography; some HSMs also allow for hardware protection of symmetric keys.
User provisioning refers to the creation, maintenance and deactivation of user objects and user attributes, as they exist in one or more systems, directories or applications, in response to automated or interactive business processes.
In information systems, identity management, sometimes referred to as identity management systems, is the management of the identity life cycle of entities.
Single sign-on (SSO) is a specialized form of software authentication that enables a user to authenticate once and gain access to the resources of multiple software systems.
Sysec News
- Tuesday 8th July 2008
- Friday 9th May 2008
- Friday 25th April 2008
- Wednesday 2nd April 2008
Head Office
Sysec Ltd
St. Mary's Court
The Broadway
Amersham
Buckinghamshire
HP7 0UT
Tel: +44 (0) 870 041 1199
Fax: +44 (0) 870 041 1188
More Information
About Sysec Solutions
Sysec Solutions work closely with a number of carefully selected best of breed technology vendors to deliver fully integrated solutions to our customers. We differentiate ourselves from our competition in that we do not sit on the fence offering a range of competing vendor products but instead offer independent advice on a tailor-made solution, most appropriate to resolving our clients individual business problems.
We maintain loyalty and a close working relationship with all our vendors ensuring we have a high level of competence, formal accreditation and hands-on implementation experience.
In order for us to maintain standards of excellence we remain focused around our core solution offerings. We do not claim to have expertise in all areas of IT security and primarily focus on the following areas:
To compliment our solution offerings we work with like minded organisations, proven solution examples are in the disciplines of physical access, identity management and penetration testing. Our partners are chosen for their niche skills within their respective disciplines and their shared vision and approach with Sysec Solutions in resolving business issues.
We maintain a "can do" attitude to business.
