RSA: SecurID

Securing Your Future with Two-Factor Authentication

Do you really know who's accessing your most sensitive networked information assets? Unfortunately, security built on static, reusable passwords has proven easy for hackers to beat.

RSA SecurID in use RSA SecurID two-factor authentication is based on something you know (a password or PIN) and something you have (an authenticator) - providing a much more reliable level of user authentication than reusable passwords.

The only solution that automatically changes your password every 60 seconds
20-year history of outstanding performance and innovation

RSA offers enterprises a wide range of user authentication options to help positively identify users before they interact with mission-critical data and applications through:

VPNs & WLANs
E-mail
Intranets & extranets
Microsoft Windows desktops
Web servers
Other network resources

Download the RSA SecurID datasheet

Hardware Authenticators

RSA SecurID hardware tokens provide "hacker-resistant" two-factor authentication, resulting in easy-to-use and effective user identification. Based on RSA's patented time synchronisation technology, this authentication device generates a simple, one-time authentication code that changes every 60 seconds.


RSA SecurID 700	RSA SecurID 800

To access resources protected by the RSA SecurID system, users simply combine their secret Personal Identification Numbers (PIN's) (something they alone know) with the token codes generated by their authenticators (something they have). The result is a unique, one-time-use passcode that is used to positively identify, or authenticate, the user. If the code is validated by the RSA SecurID system, the user is granted access to the protected resource. If it is not recognised, the user is denied access.

With RSA SecurID hardware authenticators, no interaction with the user desktop is required - that is, you don't have to install or maintain any software. Equally important, you are not required to program tokens. They are ready to use out of the box. In addition, RSA SecurID hardware authenticators are manufactured and sealed with an integral lifetime battery. No user maintenance or battery replacement is required. As a result, this authentication solution is as easy to deploy and administer as it is to use.

Download Data Sheet: RSA SecurID 700 Authenticator

Download Data Sheet: RSA SecurID Authenticators

Software Authenticators

More and more organisations are relying on PDAs and smart phones as day-to-day productivity tools.

The availability of RSA SecurID two-factor authentication operating on a wide range of personal devices allows IT administrators to make strong authentication a convenient part of doing business. RSA SecurID software authenticators reduce the number of items a user has to manage for safe and secure access to corporate assets.

RSA SecurID software tokens offer:

Strong two-factor authentication in a highly secure software implementation
Convenience with merging of RSA SecurID technology onto a user's personal device and eliminating the need to carry another item
Support for a wide range of computing platforms and devices
Flexibility for authentication models and policies, with support for up to ten software tokens on one device

RSA SecurID software tokens support the same algorithms as the industry-leading RSA SecurID hardware authenticators. Instead of being stored in an RSA SecurID hardware authenticator, the symmetric key (or "seed record") is safeguarded securely on the user's desktop, laptop, PDA, handheld, or mobile phone. RSA SecurID symmetric keys may also be stored on smart card and USB devices and used in conjunction with the RSA SecurID software token on the user's desktop.

For smartphones...

(features and specifications, links open in a new window and take you to the RSA website)

For laptops and desktops:

For web browsers:

RSA On-demand (SMS) Authenticators

The RSA SecurID On-demand Authenticator is an innovation that enables users to securely access the network without pre-assigned credentials.

Requiring no physical hardware token or software to be installed on a laptop or mobile phone, the On-demand authentication method provides flexibility and ease of deployment, while still maintaining all the security strictures required for two-factor authentication. The On-demand authentication method generates a unique, time-based one-time password (OTP) at the server and distributes it to a remote user globally using the short message service (SMS) standard or SMTP e-mail. This way, organisations can take advantage of the most commonly deployed devices end users already have: the cellular phone or laptop computer.

A Multitude of Business-Driven Uses

The On-demand Authenticator opens the door to a variety of productivity enhancing applications. For example, flexibly supporting a large base of users that require secure remote access - but do not access the network frequently enough to justify the issuing of hardware or software credentials to each user - is made easier. Contractors and vendors can be assigned temporary access to corporate resources with On-demand Authenticators. Business continuity and pandemic plans can be written around RSA Authentication Manager's ability to rapidly bring on-board large numbers of remote users without deploying tokens or involving IT in every step.

Share |

The Top Six Reasons RSA SecurID is the Gold Standard in Two-Factor User Authentication...

It all boils down to excellence in each of the categories listed below. These are the reasons why RSA SecurID is the authentication choice of over 25,000 customers worldwide.

1. Strength
2. Integration
3. Broad
4. Flexible & Powerful
5. Scalability & Quality
6. Support & Innovation

The Strongest and Easiest to Use One Time Password Security Solution

To protect your organisation's most critical information assets, you need a security system that is second to none.

RSA SecurID authentication offers a unique, time-synchronous solution that automatically changes the user's password every 60 seconds. This makes our solution more secure than event-synchronous systems with passwords that can be valid for an indefinite period of time and easier to use than challenge-response systems that require multiple steps to generate a valid code.

What's more, RSA SecurID authentication is built upon the Advanced Encryption Standard (AES) algorithm, a recognised standard that is continuously scrutinised and challenged by cryptologists around the world to ensure its strength and dependability.

RSA, with its research arm RSA Laboratories, is recognised as a leading firm in the field of cryptography. RSA continue to evolve their solutions to meet emerging threats. By investing in RSA SecurID authentication you're getting a proven and tested solution that will meet your needs for years down the road.

For More Information On This Product Please Contact Us By Clicking Here

Interoperability with Your Infrastructure

Built-in integration with more than 200 leading vendors of firewalls, remote access servers and wireless access points means fewer headaches for you.

We want to be sure that your integration process will be as trouble-free as possible and so RSA Security has invested in a broad program to ensure that our products interoperate with most of the major network infrastructure products on the market.

To earn the RSA Secured seal of approval vendors undergo a rigorous vetting process. Solutions are documented through in-depth Implementation Guides.

With the strong support of the RSA Secured program you can be sure that RSA SecurID authentication can protect your enterprise data no matter what else changes in your environment.

Do More With What You Have

Most people purchase RSA SecurID authentication to protect their remote access systems. But with this solution, that's just the beginning.

When you invest in RSA SecurID, for no additional cost you can add strong, two-factor authentication to your wireless LAN, dramatically reducing the risk of parking lot hackers accessing your most critical systems.

After that you could add two-factor authentication to:

Your Board of Directors collaboration web site
Your Cisco and Citrix environments
Your enterprise single sign-on solution
And more...

All of this functionality comes with no additional expense, offering you maximum flexibility and investment protection as you increase the ROI of your RSA SecurID installation.

Don't Get Locked Into a Single Authentication Method or Server Configuration

Maximise your return on investment by ensuring that your security system will evolve with your business needs.

Though RSA is most well-known for our hardware tokens, RSA offer a broad array of authenticators to suit any situation:

Authenticators

USB Device	Hardware	An ideal choice for a wide range of environments where various authentication methods (e.g. One Time Passwords, Digital Certificates, Microsoft Login Credentials), application and user needs exist
Key Fob	Hardware	Enables secure authentication using a convenient hardware device small enough to attach as a keychain
PC	Software	An optimal selection for end users who typically access their accounts from only one or two PCs and prefer not to carry devices
Smart Phone	Software	Allows one-time passwords to be generated on end-user's Smart Phones, enabling them to securely access network resources without having to carry a separate device.
Browser Toolbar	Software	Provides a convenient two-factor authentication option for web-based resources
SMS/E-mail	On-demand	A strong fit for temporary employees and business continuity needs, this zero-footprint offering allows end-users to receive a one-time password via SMS or e-mail.

RSA also offers a wide range of server offerings:

Server Solutions

RSA Authentication Manager Base Edition	An ideal choice for a medium size business. Provides 2 servers for master/replica configuration.
RSA Authentication Manager Enterprise Edition	Master server, up to ten replicas, and multiple realm capacity makes this the choice for larger enterprises. Includes Deployment Manager software.
RSA SecurID Appliance	Base or Enterprise Edition license on a turnkey hardware platform. Hardened Windows operating system included. Easy installation makes it well suited for SMB customers and remote offices
RSA SecurID Authentication Engine	For customers wishing to integrate strong authentication into an existing management infrastructure. SAE provides the RSA SecurID authentication engine and programming interfaces.

Designed to be a Mission Critical Application

RSA invests heavily in our testing labs to ensure that our solution meets your demanding requirements. Our tokens are better, and we have the numbers to prove it.

With a mission-critical application, downtime can mean missed opportunities and lost revenue. That's why redundancy, automated fail-over, support for high-availability servers and cross realm authentication are all available features on the RSA SecurID Authentication Manager.

Token quality is also extremely important to us. Every RSA SecurID token is sealed to protect it from the elements and to prevent tampering. RSA SecurID hardware tokens are subjected to rigorous tests to ensure that you never get hit with hidden costs due to token failures.

Tested. Scalable to support mission-critical applications.

Tests include:

Temperature cycling: Includes a -20°C to 70°C for 25 cycles with each cycle taking 2 hours and 1.5 hours for ramp time.
High humidity: Includes 95% humidity with 35°C for 96 hours, followed by a gradual decrease to 23°C and 50% humidity.
Random vibration: Includes an acceleration of 15 Grms with a frequency of 10-2000 Hz with duration of one hour per each of three axis (X, Y, &Z).
Mechanical shock: Includes a shock of 3500 g's with a pulse time of 0.5ms on all 3 axis of the unit.
ESD: The minimum engineering requirement is 15Kv (pos and neg). Tumble testing: Tumbling takes place in a hexagonal tumbling drum. Tumble at 20 RPMs for 60 minutes.
Run-over check: An automobile will drive over the fobs with a single rear tire.
Immersion check: This will check the ability of the RSA SecurID tokens to withstand immersion in water.

RSA stand behind their reputation for quality with a warrantee on every token for its lifespan.

Strong Support Both Now and Down the Road

When you purchase RSA SecurID authentication you're buying into one of the leading technical support organisations in the world. RSA's worldwide "follow the sun" support organisation is recognised as best in class by RSA customers and partners.

Because you never know when you'll need a helpful hand at two o'clock in the morning, RSA offers telephone, email and online support in multiple languages and time zones. Beyond RSA's technical support, they have a robust Professional Services team ready to help with any special requirements for your organisation.

RSA Professional Services

RSA has also invested in your success by ensuring that RSA SecurWorld Partners like Metadigm are up-to-date on the latest advances in enterprise authentication. RSA Certified Security Professionals have the knowledge, skills, and credentials necessary to deploy and maintain reliable enterprise security systems.

And because RSA understand that security threats are constantly evolving, they have invested heavily in their own Research and Development organisation: RSA Laboratories. So RSA are on the lookout for potential security pitfalls before they have a chance to impact your bottom line.