Already offering more authenticators from a single platform than any solution on the market today, Entrust (Nasdaq: ENTU), introduces the latest release of Entrust IdentityGuard, which adds support for SMS soft tokens and digital certificates.
The proven strong authentication solution has been enhanced with improved administration and reporting, simplified enterprise integration and support for new integration partners.
"Today's organization requires affordable strong authentication solutions that can scale to address the needs of enterprise and consumer environments without unnecessary costs," said Entrust President and CEO Bill Conner. "To push innovation and respond to those demands, the newest release of Entrust IdentityGuard features even more methods of authentication -- versatility and cost-effectiveness no other platform on the market today can match."
The release of Entrust IdentityGuard 9.2 enables organizations to use digital certificates -- stored locally or on secure devices like smart cards or USB tokens -- for strong authentication. Compatible with any X.509 digital certificate -- whether from Entrust's managed digital certificate service or a third party -- organizations may use Entrust IdentityGuard as their central authentication platform to smartly match security to the appropriate level of risk. This scalability not only strengthens enterprise security but can also help to improve an organization's return on investment.
To help organizations fight the persistent advance of fraud techniques, the platform's out-of-band authentication capabilities have been enhanced with the inclusion of one-time-passcode (OTP) SMS soft tokens. This new feature enables organizations to send a configurable number of OTPs to a mobile device for use during authentication. Automatically replenished as needed, this dynamic soft-token approach delivers the strength of out-of-band authentication without the concern for constant network availability, delivery timing or software deployment to a mobile device.
Announced as part of the Entrust IdentityGuard Self Service Server in December 2008, the soft eGrid authenticator provides another strong second-factor authentication method without the need to deploy a physical device. Much like electronically stored digital certificates and SMS soft tokens, the Entrust IdentityGuard eGrid can provide strong authentication without requiring end-users to carry physical hardware tokens or installing software on their mobile device.
"Not only does Entrust want to add desired capabilities, but we also strive to provide customers affordable, convenient alternatives to traditional high-priced, hardware-token authentication," said Conner. "While hardware tokens are appropriate for some high-risk transactions, we strongly believe matching authentication based on risk or access requirements can be more cost-effective and easier on end-users."
Already supporting both event-based OATH HOTP and 3DES time-and-event authentication algorithms, Entrust IdentityGuard 9.2 adds another standard to the platform with support for the new time-based OATH TOTP algorithm. This provides enhanced security capabilities for users in both enterprise and consumer environments, and expands choices for end organizations.
For broader enterprise security, Entrust now supports integration with Microsoft Internet Access Gateway (IAG), SonicWall and Array Networks for secure remote access applications and clients. This builds on Entrust's existing integration support for products from vendors such as Juniper, Citrix, F5, Cisco, Nortel, Checkpoint, Microsoft ISAPI among others. This growth is coupled with enhanced administration and reporting capabilities to address stronger compliance and audit requirements.
Traditionally supporting standards such as Web services, Radius and Microsoft ISAPI for rapid enterprise integration, Entrust IdentityGuard has been refined with capabilities to provide quicker migration of legacy, single-purpose authentication, as well as the ability to better leverage existing user information within the platform.
Entrust IdentityGuard is recognized as a benchmark by leading analyst firms for strong authentication to help organizations address a range of security and regulatory legislation requirements. Leading financial institutions, enterprises and government agencies have deployed the platform, including DnB Nor, Expedia, Commerce Bank, Bank of New Zealand, Banco Santander Santiago, Goteborg University, Ministry of Economic Development of New Zealand, SCHUFA, Arbetsformedligen, Alaska Law Enforcement Information Sharing System, Vejle Amt, Aristex, Swedish National Labor Market Administration, Skanska and more.
Entrust IdentityGuard enables organizations to layer security -- according to access requirements or the risk of a given transaction -- across diverse users and applications. The platform's authentication options include strong username and password, IP-geolocation, device profiling, questions and answers, digital certificates, out-of-band one-time passcode (delivered via voice, SMS or e-mail), grid cards, SMS soft tokens, eGrid cards and a range of one-time-passcode tokens. Entrust IdentityGuard also provides multiple methods of supporting mutual authentication, including picture and caption replay.