Strong Authentication for Application Access

Once users are connected and authenticated to the network, they need to access enterprise applications which often include their own authentication method, typically passwords. If you are seeking to extend strong authentication beyond network access level to the application level, ActivIdentity offers a variety of solutions.

Applications that have built-in support for standard authentication protocols and APIs can directly interface with ActivIdentity Strong Authentication solutions: PKCS#11, Microsoft® Crypto API, GSC-IS and PIV API enable PKI authentication with smart cards or USB tokens; RADIUS and TACACS+ enable one-time password authentication with tokens, smart cards or USB tokens.

ActivIdentity SecureLogin® SSO enables organizations to implement strong authentication for application access without requiring any modifications to the applications: user names and passwords for the applications are stored securely in the smart card or USB tokens and presented automatically by SecureLogin when the password is prompted. This allows for very complex password policies (and even randomized passwords) because the end-users do not have knowledge of the passwords. This solution provides two-factor authentication for any password-protected application without the need for any change in the application itself.

Alternatively ActivIdentity Software Development Kits (SDKs) enable native integration of strong authentication with smart cards, USB tokens and one-time password tokens into existing applications.

Features and benefits

• Strong security – Two-factor authentication establishes the identity of the user through possession of a smart card or USB token, and knowledge of the PIN code (like an ATM).
• Ease of use – End-users simply insert their smart card (or USB token) and type their PIN code to enable strong authentication.
• Ease of deployment – ActivIdentity SecureLogin SSO enables single sign on to leverage strong authentication for application access. SecureLogin SSO supports all types of applications including web, java, and windows applications as well as terminal emulators.
• Accountability for compliance – With two-factor authentication, organizations have strong proof of identity in order to protect access to applications and link online activity to users, an essential element to addressing regulatory compliance.