earthwave

Managed Two-Factor Authentication Services

Challenge

Many companies recognise the need for strong authentication to protect their data and other digital assets, but they lack the requisite skills, manpower, infrastructure or budget to implement a two-factor authentication solution.

Solution

Earthwave's Managed Two-Factor Authentication Service offers the benefits of strong two-factor authentication without the need to implement the infrastructure in house.

Managed Two-Factor Authentication Services (MAS) is a hosted service that provides commercial and government enterprises including consumer based enterprises such as e-banking, e-finance, e-commerce and online gaming enterprises strong authentication to offer their users and customers to protect their valuable online and remote access accounts.

The MAS technology used by earthwave is powered by RSA - the global leader in protecting online identities and digital assets with a strong reputation built on a 20-year history.

Unlike licensed solutions, MAS allows you to be efficient in your token management. You have the ability to add or remove users (or tokens) as needed as there is no user minimum or minimum user increment.

During service establishment earthwave consultants will work closely with your team to understand your authentication requirements in detail and to ensure the service will meet your business and technical needs. Service establishment includes:

Architecture Design

earthwave consultants work closely with the client to assist with deployment, integration and agent implementation architecture

Advisory Services

earthwave MAS consultants provide advisory services by considering relevant usage and workflow requirements as well as referencing industry best practices when deploying MAS

Technical Training

earthwave provides a half day training session to brief the MAS architecture and the use of API for your technical staff in order to speed up the integration process

Secure Packaging and Secure Logistics

earthwave will provide secure packaging and logistics for each token to ensure the token is maintained in good and secure condition during transport and guarantee it is received by the intended person

Customer Service Training

The objective of this training is to help the customer service staff to identify the failure token via the phone, reset and change passwords etc, and to be able to attend to 70% of the calls received by the help desk

Earthport - MSS Client Portal

Earthport provides access to the Token Management System, a web based application that provides you a centralised token management portal from anywhere and anytime

MAS offers enterprises a wide range of user authentication options to help positively identify users before they interact with mission-critical data and applications through:

• VPNs & WLANs
• E-mail
• Intranets & extranets
• Microsoft Windows desktops
• Web servers
• Other network resources

Key benefits include:

• Strong authentication without the hassle
• Quick to implement: no new hardware or software to install
• Low costand reduced technical burden
• Auditable and standards compliant
• Scaleable: 5-100,000+ users
• Flexible: Mix and match authentication tokens

Conclusion:

Fast to implement.Low monthly user service fee. No licensing commitment. No repurchase commitment. No heady IT implementation. Just enterprise-class strong, two-factor authentication.

Strength of Security

Expand

Collapse

MAS provides all the security benefits of RSA SecurID strong authentication.

There have been no reported security breaches of RSA SecurID authentication in over 20 years. To protect your organisation's most critical information assets, you need a security system that is second to none. RSA SecurID authentication offers a unique, time-synchronous solution that automatically changes the user's password every 60 seconds. This makes our solution more secure than event-synchronous systems with passwords that can be valid for an indefinite period of time and easier to use than challenge-response systems that require multiple steps to generate a valid code.

What's more, RSA SecurID authentication is built upon the Advanced Encryption Standard (AES) algorithm, a recognised standard that is continuously scrutinized and challenged by cryptologists around the world to ensure its strength and dependability.

RSA Security with its research arm, RSA Laboratories, is recognized as a leading firm in the field of cryptography. We continue to evolve our solutions to meet emerging threats. By investing in RSA SecurID authentication you're getting a proven and tested solution that will meet your needs for years down the road.

Easy to Implement and Integrate

Expand

Collapse

MAS requires absolutely no additional investment in infrastructure. Nor does it require your employees to have technical skills in two-factor authentication. You can be up and running with a secure, reliable, strong authentication mechanism within days. Built-in integration with more than 200 leading vendors of firewalls, remote access servers and wireless access points means fewer headaches for you.

We want to be sure that your integration process will be as trouble-free as possible and so our choice of RSA Security ensures that MSA interoperates with most of the major network infrastructure products on the market.

To earn the RSA SecuredŽ seal of approval vendors undergo a rigorous vetting process. Solutions are documented through in-depth Implementation Guides.

With the strong support of the RSA Secured program you can be sure that MAS authentication can protect your enterprise data no matter what else changes in your environment.

Low Up-front Costs

Expand

Collapse

Because you are not purchasing any software or servers to implement your authentication solution, your up-front costs are significantly reduced. MAS is available based on a low monthly fee per token, without any setup costs, providing predictability in your expenditures and scalability as you grow.

High Level of Service, Support & Innovation

Expand

Collapse

Earthwave Service Level Agreement provides you with the protection of a high level of service, without the requirement of staffing a help desk with technically sophisticated employees.

When you purchase MAS you're buying into one of the leading technical support organisations in the world. The earthwave Security Operations Centre is certified to the AS/NZ 17799, ASIO T4, and DSD standards and recognised as best in class by our customers and partners. Because you never know when you'll need a helpful hand at two o'clock in the morning, earthwave offers telephone, email and online support.

Earthport

Expand

Collapse

The earthwave MSS Client Portal - Earthport, provides a secure, easy-to-use interface for provisioning users, assigning tokens and other administrative tasks.

Broad Application in the Enterprise

Expand

Collapse

Most people purchase two-factor authentication to protect their remote access systems. But with this solution, that's just the beginning.

When you invest in MAS, for no additional cost you can add strong, two-factor authentication to your wireless LAN, dramatically reducing the risk of parking lot hackers accessing your most critical systems.

At RSA Conference 2006 in San Jose, Bill Gates of Microsoft spoke of the "death of passwords". If you are using RSA SecurID, it will cost you nothing to replace the Windows Password Login (or GINA) with strong, two-factor authentication. Instead of having to remember long, complicated passwords, users enter a PIN and a tokencode for access to their Windows desktop. Even if they're offline at the time.

After that you could add two-factor authentication to:

• Your Board of Directors collaboration web site
• Your Cisco and Citrix environments
• Your enterprise single sign-on solution
• And more

All of this functionality comes with no additional expense, offering you maximum flexibility and investment protection as you increase the ROI of your MAS installation.

Flexible, Powerful Offerings

Expand

Collapse

Don't Get Locked Into a Single Authentication Method or Server Configuration. Maximise your return on investment by ensuring that your security system will evolve with your business needs.

Though MAS is most well-known for our hardware tokens, we offer a broad array of authenticators to suit any situation:

Authenticators

USB Device	Hardware	An ideal choice for a wide range of environments where various authentication methods (e.g. One Time Passwords, Digital Certificates, Microsoft Login Credentials), application and user needs exist
Key Fob	Hardware	Enables secure authentication using a convenient hardware device small enough to attach as a keychain
PC/Embedded	Software	An optimal selection for consumers who typically access their accounts from only one or two PCs and prefer not to carry devices
PDA/Mobile Phone	Software	Allows the mobile consumers with pre-existing hardware to securely access their online accounts without having to carry an additional device
Browser Toolbar	Software	Provides a convenient two-factor authentication option for web-based resources

Designed to be a Mission Critical Application

Earthwave invests heavily in our Security Operations Centre to ensure that our solution meets your demanding requirements. Our service is better, and we have the numbers to prove it.

With a mission-critical application, downtime can mean missed opportunities and lost revenue. That's why our world class data centres, layered security, redundancy, automated fail-over, high-availability servers and cross realm authentication is all standard features of MAS.

Token quality is also extremely important to us. Every RSA SecurID token is sealed to protect it from the elements and to prevent tampering. RSA SecurID hardware tokens are subjected to rigorous tests to ensure that you never get hit with hidden costs due to token failures.