In computer security, authentication is the process of attempting to verify the digital identity of the sender of a communication such as a request to log in. The sender being authenticated may be a person using a computer, a computer itself or a computer program. A blind credential, in contrast, does not establish identity at all, but only a narrow right or status of the user or program.
In cryptography, a public key infrastructure (PKI) is an arrangement that binds public keys with respective user identities by means of a certificate authority (CA). The user identity must be unique for each CA. This is carried out by software at a CA, possibly under human supervision, together with other coordinated software at distributed locations. For each user, the user identity, the public key, their binding, validity conditions and other attributes are made un-forgeable in public key certificates issued by the CA.
A smart card, chip card, or integrated circuit card (ICC), is defined as any pocket-sized card with embedded integrated circuits which can process information. This implies that it can receive input which is processed - by way of the ICC applications - and delivered as an output. There are two broad categories of ICCs. Memory cards contain only non-volatile memory storage components, and perhaps some specific security logic. Microprocessor cards contain volatile memory and microprocessor components. The card is made of plastic, generally PVC, but sometimes ABS. The card may embed a hologram to avoid counterfeiting.
A Hardware Security Module (often abbreviated to HSM, also often called a Host Security Module) is a plug-in card (PCI) or external device (RS232/SCSI/IP/USB) for a general purpose computer and may even be an embedded system itself.

The job of the HSM is to securely generate and/or store long term secrets for use in cryptography and physically protect the access to and use of those secrets over time. Generally these are private keys used in Public-key cryptography; some HSMs also allow for hardware protection of symmetric keys.
User provisioning refers to the creation, maintenance and deactivation of user objects and user attributes, as they exist in one or more systems, directories or applications, in response to automated or interactive business processes.
In information systems, identity management, sometimes referred to as identity management systems, is the management of the identity life cycle of entities.
Single sign-on (SSO) is a specialized form of software authentication that enables a user to authenticate once and gain access to the resources of multiple software systems.

Sysec News

Contact Us

Head Office

Sysec Ltd
St. Mary's Court
The Broadway
Amersham
Buckinghamshire
HP7 0UT

Tel: +44 (0) 870 041 1199
Fax: +44 (0) 870 041 1188

More Information

Strategic Partners

ActivIdentity

ActivIdentity is a trusted provider of identity assurance solutions for the enterprise, government, healthcare, and financial services markets worldwide. The company provides the only fully-integrated platform, enabling organisations to issue, manage and use identity devices and credentials for secure access, secure communications, legally binding digital transactions, as well as intelligent citizen services.

ActivIdentity customers experience multiple benefits including increased network security, protection against identity theft and online fraud, enhanced workforce productivity, business process efficiencies, and regulatory compliance. ActivIdentity solutions include Smart Employee ID, Enterprise Single Sign On, Strong Authentication, Secure Information and Transactions, and Smart Citizen ID.

More than 15 million users and 4,000 customers worldwide rely on solutions from ActivIdentity. Headquartered in Fremont, Calif., the company has development centers in the United States, Australia, France, and sales and service centers in more than ten countries. For more information, visit www.actividentity.com

Imprivata

Imprivata is the enterprise authentication and access management appliance company delivering OneSign-an easy, smart and affordable appliance for securing networks, applications and building/IT access. The OneSign appliance includes OneSign Authentication Management, which increases network security by replacing Windows passwords with strong authentication options; OneSign Single Sign-On, which quickly and effectively solves password management, security and user access issues; and OneSign Physical/Logical, which integrates building and network access systems to enable location-based authentication.

Based in Lexington, Mass., the company is privately-held with venture funding from Polaris Venture Partners, Highland Capital Partners and General Catalyst Partners and its solution is distributed through an established worldwide network of channel, ISV and technology partners. For more information, please visit www.imprivata.com/.

Marshal

With new threats disrupting business, productivity and wrecking reputations every day, Marshal's content security solutions take a proactive approach to identifying email and web vulnerabilities to protect over seven million international users from the risks of email and Internet-based threats. For more information about Marshal visit www.marshal.com

McAfee

McAfee Inc., the leading dedicated security technology company, headquartered in Santa Clara, California, delivers proactive and proven solutions and services that secure systems and networks around the world. With its unmatched security expertise and commitment to innovation, McAfee empowers home users, businesses, the public sector, and service providers with the ability to block attacks, prevent disruptions, and continuously track and improve their security. www.mcafee.com

Microsoft

Founded in 1975, Microsoft (Nasdaq "MSFT") is the worldwide leader in software, services and solutions that help people and businesses realize their full potential.
If you are interested in viewing additional information on Microsoft, please visit www.microsoft.com

nCipher

nCipher protects critical enterprise data for many of the world's most security-conscious organisations. Delivering solutions in the fields of identity management, data protection, enterprise key management and cryptographic hardware, nCipher enables businesses to identify who can access data, to protect data in transit and at rest, and to comply with the growing number of privacy-driven regulations. nCipher plc is listed on the London Stock Exchange (LSE:NCH). www.ncipher.com

Pointsec

Pointsec is the worldwide de facto standard for mobile device security - with the most customers deployed, highest level of certification and more complete device coverage than any other company. Pointsec delivers a trusted solution for automatic data encryption that guarantees proven protection at the most vulnerable point where sensitive enterprise data is stored - on mobile devices. By securing sensitive information stored on laptops, PDAs, smartphones, and removable media, enterprises and government organizations can protect and enhance their image, minimize risk, shield confidential data, guard information assets, and strengthen public and shareholder confidence. www.pointsec.com.

Proofpoint  

Proofpoint provides unified email security and data loss prevention solutions for enterprises and ISPs to defend against inbound threats such as spam and viruses, prevent leaks of confidential and private information across all protocols - FTP, HTTP, SMTP - and encrypt sensitive emails. Proofpoint's products are controlled by a single management policy console and are powered by Proofpoint MLX technology, an advanced machine learning system developed by Proofpoint scientists and engineers. www.proofpoint.com

 
Objectsoft
 

Objectsoft are a primary leader in the supply of web based business process for the capture of socio-biographical data, assuring the real world identities of individuals for the purpose of e-signatures and identity management provisioning.   Objectsoft provide a COTS solution, e-ntitle.®, which has been designed to provide compliance and identity assurance for use with identity management systems and in particular public key infrastructure (PKI). It is a software application that manages the business process of 'registration and the lifecycle management' for X.509v3 digital certificates.

e-ntitle.® is an automated and fully auditable Registration Authority software application. It brings consistency and efficiency to the RA aspect, enforcing the legal requirements in a rigorous and audited manner. Therefore, all digital certificates registered and controlled by using e-ntitle.® will have probative value. The process is consistently stringent regardless of user or location; therefore, all digital certificates created by using e-ntitle.®, can be trusted.   www.objectsoft.uk.com    

 

 
Solutions