Posts Tagged ‘strong auth’

SSOCircle celebrates its 3rd anniversary

Thursday, January 28th, 2010

It is already 3 years ago when SSOCircle, the free public multi protocol IDP, went into production. What happens in the past year ? We added new  devices to our strong authentication options:  The Yubikey and the Swekey, two new innovative OTP tokens. Users do not need to type in the one time passwords. In case of Yubikey you just have to push a button and in case of the Swekey the password is read by a tiny piece of JavaScript.

We also added some new demos like the one with Salesforce (which includes Google Apps SSO), the downloadable award winning Fedlet and last not least our SAML enabled Wordpress Blog.

On the other side we saw a decline of interest at the end of 2008 and the first months of 2009. Less users subscribed to the IDP and visited the web site. An impact of the economical downturn ? The good news is that the numbers came back to the values of mid 2008 in the second half of 2009.

We also anticipated analyst attention as the Burton Group published a report called “New Direction in Federation“. Read our blog here. The report introduced “Federation identity hosted services” and gave a good market overview about the offerings.

The new Spring Security SAML modul was released and many developpers tested it against SSOCircle SAML IDP. And there are other very intereting services testing …

So, please stay tuned this year. There are many new things coming this year. We are quite sure that 2010 will see the
breakthrough for “new directions in federation”.

Tags: , , , , , , , ,
Posted in English | No Comments »

Swekey: OTP authentication without tedious typing of digits

Sunday, May 3rd, 2009

SSOCircle introduces a new one time password strong authentication device with USB interface. If you are tired of reading and typing one time passwords from conventional tokens, this is the device for you.

The Swekey is a one time password token that works with a challenge/response. SSOCircle offers two authentication modules: Swekey and Swekey&Pin. Use of an additional pin augments securityi and gives you a higher authentication level compared to Swekey (without pin) and should be used for applications that need stronger protection. Get your Swekey here.

Tags: , ,
Posted in English | No Comments »

Strong Two Factor Authentication with USB Hardware Smart Card Tokens

Saturday, November 10th, 2007

Continuing the road to secure strong authentication SSOCircle now supports USB hardware smart card tokens. These tokens are a combined smart card and smart card reader with a USB interface. Because of their small size, they can be easily attached to a key ring. Have you ever been worried using a public internet terminal ? Have you been bothered about a keystroke logger could be installed on the PC and is grabbing your passwords ? If yes, ePass USB smart card token is the perfect solution for you. SSOCircle offers now automatic enrollment of X.509 certificate to ePass USB tokens. Just enroll a certificate at SSOCircle.com, go to the internet cafe and insert the stick and single sign on to SSOCircle and all integrated Service Providers. After finishing your work, logout and remove the USB token and be 100% safe that nobody can grab your credentials and reuse it. The certificate store on the token can not be exported or copied from the stick. That’s simply the meaning of two factor authentication: one thing you know (the PIN of the token) and one thing you have (the token itself). Security made simple.

ePass tokens can be used driverless. For Firefox you only need to setup the security device. To ease that step we are now providing a Firefox addon. The addon probes for the PKCS11 libraries, creates the device and imports the SSOCircle CA certificates automatically.
But if you think that installing an addon is not feasible on a public terminal, read this: StorePass is a device with flash memory and a smart card on one device – and cool as it is – it doesn’t need a driver. So, just put your fully configured firefox on the flash, start the browser from the stick and off you go.

If you are looking for the ePass or the StorePass, please visit RS-Computer.

Technical note:
ePass2000ft11 tokens work on Windows Windows 98SE/Me/2000/XP/Server 2003/Vista, Linux and MacOS. For use with Firefox you just need the PKCS11 library but no additional drivers.
StorePass is a device combining flash storage and the ePass smart card functionality.
For more information and details visit RS-Computer.

Tags: , , , , , , ,
Posted in English | No Comments »

Strong Authentication and Public Key Infrastructure

Saturday, August 18th, 2007

As one of our main goals has always been the improvement of authentication security, SSOCircle is now offering Strong Authentication with X.509 Certificates and a PKI supporting automatic enrollment of Certificates. Using Certificate based authentication reduces the threat of Phishing ( a malicious site that pretends to be the login mask of someother and reads your password – no matter if it was encrypted over the wire or not ). With Certificate based LogIn there is no need to let your password travel over the network.

Tags: , , , ,
Posted in English | No Comments »