Authentication implies confirmation. “Kindly authenticate your user id and password” – Well, few messages like this indicates that our id’s / passwords are not completely authenticated. This indicates that the data which we have already entered needs to be validated more strongly. This is where Strong Authentication plays a lead role.
Strong Authentication is “a layered authentication approach relying on two or more authenticators to establish the identity of an originator or receiver of information.”
Strong Authentication is a form of computer security in which the identities of networked users, clients and servers are verified without transmitting passwords over the network.
Security using Strong Authentication
For security purpose it is vital for organizations to introduce Strong Authentication to their enterprises.
Organizations that are looking for a way to introduce strong authentication to their enterprise or client machines will need to start by allowing users to authenticate with either a single or with multiple authentication factors such as biometric devices among others. The organization can extend the strong authentication process to Windows Logon protection (GINA for Windows XP and Credential Provider for Windows Vista/7) as well. This is done by authenticating users with a fingerprint, smart card or other device before granting access to the Windows desktop using Single Sign On (SSO)
or other methods. For enterprise users it is important to set specific login policies that are configurable per user or by machine. It is always beneficial to provide an “Emergency Policy Override” feature that allows policies to be overridden by the end user or by the enterprise help desk.
Thus, when it comes to Strong Authentication, the solution is OmniPass.
How OmniPass supports Strong Authentication?
Let’s see how OmniPass supports Strong Authentication
- OmniPass is a security product which authenticates the user based on the password and multiple authentication devices such as finger print scan sensor, TPM, smart cards, etc. This increases the security of the data on the computer as unauthorized user cannot get access until the correct match of password and authentication device is achieved. When the user is authenticated by OmniPass the user is granted access to the machine.
- OmniPass works as a Single Sign On mechanism by authenticating the users with the biometric authentication devices for getting access to all the applications running on the machine.
- Thus, any kind of unauthorized access to personal information or corporate data can be avoided using OmniPass’s Strong Authentication devices. This is also a relief for the user to protect his data from any unauthorized access.
- Biometrics as a Strong Authentication. Biometrics is the most secure and convenient authentication tool. It can not be borrowed, stolen, or forgotten and hacking is practically impossible. Biometrics measures individual's unique physical characteristics to recognize or authenticate their identity.Popular biometrics include fingerprints, hand or palm geometry, retina, and facial characteristics.
OmniPass and Strong Authentication Rules
OmniPass also gives the users opportunity to set rules for each operations that are performed.
These ‘Authentication Rules’ are used to establish the policies that OmniPass enforces upon various authentication events. In case if there are no Hardware devices enrolled, the user cannot set any authentication rules.
Hence prior to setting any authentication rules, it is mandatory for the user to enroll the hardware devices. When the user sets the rules for multiple hardware devices enrolled, these are set independently but they work cumulatively. Thus, this cumulative working again acts as a solution for Strong Authentication.
Illustration – in case if the user has a SmartCard device and a Fingerprint recognition device enrolled,the SmartCard authentication rules are set independently of the fingerprint reader authentication rules, but the action goes cumulative so as to provide Strong Authentication.