An Introduction to RSA SecurID - PowerPoint PPT Presentation

1 / 56

About This Presentation

Title:

An Introduction to RSA SecurID

Description:

Out-of-the-box interoperability with over 300 certified products from over 200 vendors ... User data entered in ACE/Server. IT issues SecurID to user. RSA Auth ... – PowerPoint PPT presentation

Number of Views:3082

Avg rating:3.0/5.0

Slides: 57

Provided by: rsa60

Category:

more less

Transcript and Presenter's Notes

Title: An Introduction to RSA SecurID

1
An Introduction to RSA SecurID
2
Agenda

Strong Authentication Overview
RSA Market Presence
RSA SecurID product family
Product Applications
RSA the company

3
Addressing Challenges Requires Key Capabilities
How do you manage identities?
Who are you?
What can your identity do?
How can you protect data?
4
Addressing Security ChallengesIdentity Access
Management Solutions
How do you manage identities?
Who are you?
What can your identity do?
How can you protect data?
5
Why Focus on Authentication?

Authentication is the essential foundationfor
trusted business process
Establishes trust by proving identitiesof the
participants in a transaction
On the Internet, no one knows youre a dog

NON-Repudiation!
6
Driving the Need for Strong Authentication

Expanding access
Increasing numbers of mobile workers and
telecommuters
Extension of the enterprise network to third
parties
Customers
Partners
Willy Sutton effect
Increase in sensitive information accessed
remotely
High levels of internal compromise/theft

The problem with passwords
Passwords provide weak security
Multiple passwords are unmanageable
Passwords are surprisingly expensive
Compliance laws
27 states require notification
10 million identity theft victims

Source RSAS, adapted from Frost Sullivan
7
Two-Factor User AuthenticationMost Common Example
PIN
8
Authentication ChoicesRelative Strength
PIN
PIN
PASSWORD

PasswordPolicy
POLICY

Single factor
Two factor
Three factor
Weaker
Stronger
9
Market Presence
10
RSA Competitive Position
All Others
RSA
2004
Source IDC Worldwide Authentication Token
2005-2009 Forecast and 2004 Vendor Share
December 2005
11
Diverse Vertical Markets
11

Added 2500 New Customers in 2005
21,000 Customers Worldwide

12
Advancing e-Business
12

Transforming e-security into a business enabler
Thousands of customers worldwide
89 of the Fortune 100
66 of the Fortune 500
88 of the worlds top 50 banks

13
Third Party Validation

Fact
RSA SecurID has won more industry awards than any
other authentication solution.
Customer Benefit
The best predictor of satisfaction is the
experience of other users.

14
RSA SecurID Product Family
15
RSA SecurID Products

RSA SecurID Authenticators
Hardware Tokens
Software Tokens
Smart Cards/USB Tokens
RSA Authentication Manager
The engine of RSA SecurID
RSA Authentication Agents RSA
SecurID security guards
RSA Authentication Deployment Manager
RSA SecurID credential deployment solution
RSA SecurID Select
Co-branding service

The 3 core components of SID solution
16
RSA SecurID Authentication Solution
Authentication Agent
Authentication Manager
17
RSA SecurIDTime Synchronous Two-Factor
Authentication
RSA Authentication Agent
RSAAuthentication Manager
RAS,VPN, Web Server, WAP etc.
18
RSA SecurID

Time-SynchronousAuthentication Devices

19
RSA SecurID Authenticators

RSA SecurID Hardware Tokens
Key fob
Standard card
PinPad
Hybrid Token
RSA SecurID Software Tokens
Windows PC
Microsoft Windows Mobile
Palm Handhelds
BlackBerry Handhelds
Wireless Phones

20
Store Next Generation RSA SecurID Authenticator
Technologies

Phones
Toolbars
Flash Memory
Signing Token
Flexible Token

RSA Confidential Dates and Features subject to
change
21
RSA Authentication Manager
22
RSA Authentication ManagerKey System Components

A database
Of users, tokens and client information
The authentication engine
Performs the user authentication based on the
credentials supplied by the agent
An administration program
System management create change settings,
assigning tokens users, reporting, etc.

23
Feature Comparison

Base Edition
1 Primary, 1 Replica
Only 1 Realm
Deployment Manager separate purchase

Enterprise Edition
1 Primary, up to 10 Replicas
Up to 6 Realms
High Availability support
Deployment Manager included

24
RSA Authentication Manager Base EditionHighlights

High performance
Replication architecture results in high
authentication performance and savings in server
costs
Reduce Help Desk Costs
Quick Admin Web-based administrator application
handles 80 of daily RSA SecurID tasks
Reduced Administration Costs
Centrally maintain user records in LDAP
Synchronization between Authentication Manager
database and LDAP

25
RSA Authentication Manager Enterprise
EditionHighlights

Increase performance
Support for up to 10 Replicas per realm
400 performance improvement
Meet business goals with network configuration
flexibility
Increase performance by locating Replicas and/or
realms close to end user centers
Reduce transcontinental network charges and
traffic
Reduced Risk of Downtime
Geographically distribute Replica servers
Run software on High Availability hardware
systems
Reduce downtime (unexpected or planned)
Avoid unexpected administrative costs
Deployment Manager included with license

RSA SecurID Appliance
Secure and Simple

27
RSA SecurID ApplianceThe all-in-one solution

V1.0
Secure and Simple
Bundles of 10, 25, 50, 100, 150 250 users
V2.0 introduced in 2006
An Appliance to meet your needs
Same Bundles to 250U
Ala Carte to 50,000 users
Base or Enterprise License
Supported Environments
Appliance Primary / Replica
Authentication Manager Primary / Appliance Replica

Choose Maintenance Option Standard or Extended
28
RSA SecurID ApplianceKey Features Benefits

Features
Purpose-Built Appliance
Hardened Windows Server 2003
Embedded Application Firewall
Disabled Components Services
Hardened TCP/Stack
Limited Group/User Sharing Options
Application Hardening
Authentication Manager v6.1 Full Feature Set
Web Management Interface
Embedded Web Server (IIS 6.0) plus Authentication
Agent for Web 5.3
Supports 200 RSA SecurID Ready Partners

Benefits
Lower TCO
Faster Implementation
Stronger Security
Full Functionality
Easy to Manage

29
(No Transcript)
30
Customer Value PropositionLower Total Cost of
Ownership

Similar Equipment Acquisition Costs
Lower Configuration / Set-up Cost
Lowers Risk of Mis-Configuration, etc
Out-of-the-box Hardened OS and configured
Application Firewall
Convenience -- Single Vendor Solution
Lower cost of troubleshooting and ongoing
service
Lower Management Cost
Simple Web Admin GUI

31
RSA Authentication Agents
32
RSA Authentication Agents

Acts as security guard between RSA
Authentication Manager, the protected resource
and the user
Intercepts access requests and forces RSA SecurID
authentication
Out-of-the-box interoperability with over 300
certified products from over 200 vendors
RSA Authentication Agent SDK enables additional
interoperability for
customer specific resources
RSA SecurID Ready program ensures consistent
testing and certification of all third-party RSA
Authentication Agent implementations

33
Providing strong authentication solutions which
prove a users identity before granting access to
a resource
Users
Resources
Users
Resources
OS Unix OS Linux OS Windows Systems
Web Fax Phone
PAM Agent SID4Win
Web Agents Custom
Admin
Business Partner
Dialup VPN Citrix SSL-VPN OWA
SecurID Ready Web Agents
Web Phone
Web Agents Custom
Remote Employee
Individual Consumer
Windows Wireless Web portal Wired 802.1x
SID4Win 6.1 Server Web Agents OTPS
Employee
34
Interoperable with over 300 solutions

Web applications and servers
Oracle
EMC Documentum
Sun Microsystems
Apache
BEA
IBM
Microsoft
Provisioning
Computer Associates
IBM
Thor Technologies
BMC
Sun Microsystems
Email, workflow and office automation
Microsoft
Novell
Adobe
IBM

Wireless
Cisco
Microsoft
Nokia
Perimeter defense (Firewalls, VPNs and Intrusion
Detection)
Aventail
Check Point Software
Cisco
Citrix
Juniper
Nortel
Nokia
Microsoft
Network and communications
Lucent
Cisco
Radius
3COM
Funk Software

Customer Benefit Reduced time to market and
lower deployment costs
35
RSA Authentication Deployment Manager
36
RSA Authentication Deployment Manager Overview

Provides a self-service provisioning model that
allows users to request, deploy and activate
hardware and software tokens, from a Web browser
Automates and dramatically speeds the rollout of
RSA SecurID hardware and software authenticators
to end users
Provides user self-service functionality which
can reduce operating costs, particularly calls to
the help desk
Self-service PIN change
Request a hardware token replacement
Scales to easily meet the needs of both small and
large user deployments
Enables flexible integration with other RSA
Security products or your existing corporate
resources
Leverage existing data resources and investments

37
RSA Authentication Deployment Manager ROI
Manual process
Manager faxes form to IT
paper request form
Manager Signature
IT gathers user info

Results
7 steps
Many delays
Time to deploydays
Significant IT involvement

User data entered in ACE/Server
IT assigns SecurID
IT issues SecurID to user
RSA Auth Deployment Manager

Results
3 steps
Time to deploy lt 1 Day
NO IT involvement, Authentication Manager work
handled automatically by Web Express

User activates token via ADM
Mail room issues SecurID
End user requests token via ADM
38
Authentication Deployment Manager Features
Hardware token approval process
Web Server
User
Manager
RSA Authentication Manager
Distributor
39
Features of Deployment Manager End user
self-service PIN change
Web Server
LDAP
User
RSA Authentication Manager
Help desk
40
Any User, Anywhere

Automation brings rapid deployment
Resource limitations are no longer a barrier to
rollout of RSA SecurID
Available 24x7
RSA Authentication Deployment Manager works for
the base of users and data that you want to
protect
Enterprise
B2B
B2C
ASP

RSA Authentication Deployment Manager
41
RSA SecurID Common Applications
42
RSA SecurIDAuthentication in Action
43
RSA SecurIDAuthentication in Action
44
Remote AccessAuth Agent for Web streamlines
authentication to OWA
SecurID passcode prompt replaces the password
45
RSA SecurIDAuthentication in Action
46
Citrix No Password Required!
47
RSA SecurIDAuthentication in Action
48
RSA SecurIDAuthentication in Action
49
RSA SecurIDAuthentication in Action
50
RSA SecurIDAuthentication in Action
51
RSA SecurIDAuthentication in Action
52
RSA SecurIDAuthentication in Action
RSA Authentication Manager and Appliance
53
RSA Security the Company

Facts
Is a profitable, stable company with a 20 year
history leading the authentication market.
Has a worldwide follow the sun support
organization that is recognized as best in class
by customers.
Has an experienced professional services
organization to help with special requirements.

54
RSA Security the Company

Facts
Has a worldwide network of experienced channel
partners prepared to deliver and support the RSA
Security products.
Is committed to industry standards and is leading
the efforts to define the one- time password
specifications.
Has a research armRSA Laboratoriesthat is
recognized as an industry thought leader in
addressing current and future security issues.
Customer Benefit
Customers should feel comfortable knowing they
are dealing with an innovative company committed
to their success and satisfaction.

55
What RSA Securitys Customers Sayfrom the
recent The Info Pro survey

Its solid. It just works. High assurance of
proper authentication.
Experienced, trusted.
The number 1 vendor in providing
authentication.
Ubiquity makes support easy and reliable.
The server stays up. It is scalable and has a
great track record.
Great for us. It is reliable and it works when
it should.
Very solid and dependable.
Very impressed with RSA and their products. They
are a great company and I always get the answers
I need. Theyve been fantastic.
Their tech support is the model for a help desk
and quality of support. They are the best Ive
ever seen.