Multi-Factor Authentication Introduction
view MFA Products
What People Are Saying
Principal Product Manager
"Before we deployed SafeWord, our medical professionals and other employees couldn’t access medical applications and data once they left the hospital. Now, we can provide the convenient access to medical resources that our staff needs, no matter where they are—while at the same time ensuring that we continuously safeguard the information patients entrust to us."
“MobilePass helps us to distinguish between friend and foe in a user-friendly way. Even our non-technical users are commenting on how easy the new OTP solution is. As the ICT manager, I just really like the simple implementation and integration.”
"The deployment of SafeWord and MobilePASS© across the company was very straightforward and the ability to centrally manage our authentication solutions is essential in maintaining control of our data…We’re confident that our investment in these proven technologies will safeguard our business-critical data for many years to come."
Head of ICT
"The availability and built-in capacity of SafeNet’s Authentication Service cloud delivery model not only proved to be able to scale with our business, but is able to do so in a very efficient and cost-effective manner."
NTT Com Security
"Enterprises looking to deploy the cloud want both enterprise-grade performance and security, while still benefiting from the scalability and economics of multi-tenant virtualization technology. Incorporating SafeNet’s authentication platform brings another best-of-breed offering to our platform and lays the foundation for further extensive security capabilities."
Dr. Shaw Chuang
Executive Vice President of Engineering
Multi-factor authentication serves a vital function within any organization -securing access to corporate networks, protecting the identities of users, and ensuring that a user is who he claims to be.
Evolving business needs around cloud applications and mobile devices, combined with rising threats, and the need to reduce costs, require entirely new considerations for access control.
The Need for Multi-Factor Authentication
New threats, risks, and vulnerabilities as well as evolving business requirements underscore to the need for a strong authentication approach based on simple service delivery, choice, and future-forward scalability.
Today, organizations are asking:
Can I address new demands of my business — like cloud and mobile devices?
How do I map access control methods to business risk and the needs of my users?
Can I centrally manage, control and administer all my users and endpoints?
Who controls my user data?
How can I incorporate additional security layers to help me further fortify against threats?
And how do I keep it all practical and cost-effective?
More than ever, customers are looking for identity and access management solutions that deliver simplicity, automation, reduced TCO and choice.
What is Multi-Factor Authentication (MFA)?
Multi-factor authentication ensures that a user is who they claim to be. The more factors used to determine a person’s identity, the greater the trust of authenticity.
MFA can be achieved using a combination of the following factors:
- Something You Know – password or PIN
- Something You Have – token or smart card (two-factor authentication)
- Something You Are – biometrics, such as a fingerprint (three-factor authentication)
Because multi-factor authentication security requires multiple means of identification at login, it is widely recognized as the most secure method for authenticating access to data and applications.
How to Strengthen Your Authentication?
Gemalto's multi-factor authentication software delivers the protection you expect, while enabling customers with broader choice, improved visibility, and the ability to expand into the future. As a result, organizations using our MFA software have:
Better self-control of data - Gemalto enables customers with the option to create and control their own token data, so there is no reliance on a third-party vendor
Improved management and visibility – Gemalto's solutions deliver single-server management, providing full control, simple administration, and reduced cost and staff burden
Expanded options – Gemalto delivers the broadest choice when it comes to access security methods – so you can meet the needs of any user and any risk level (hardware or software, certificate-based authentication or traditional one-time-password, on-premise, or into the cloud)
Future-ready solutions - Gemalto provides new solutions that deliver MFA and single sign-on (SSO) for cloud applications as well as credentialing for mobile device management
Painless migrations - SafeNet offers seamless migration to cloud-based authentication, which maintain your existing investments and cause no disruption to end users
The Need for Strong Authentication
Strong authentication refers to systems that require multiple factors for authentication and use advanced technology, such as secret keys and encryption, to verify a user’s identity. The simplest example of is a consumer accessing funds via his or her ATM card. This requires something the user has (their card), and something they know (their PIN). Most people wouldn't want their bank to allow access to their checking account with just one factor.
Yet many organizations allow entrance to their valuable VPN, Citrix, and Outlook Web Access resources (often much more valuable than a single personal checking account) with only one factor—often a weak password. Strong authentication enables organizations to strengthen the protection of these vital resources.
While the decision to use multiple factors for verifying users' identities is clear cut, deciding on an approach is anything but. Today, there are hundreds of options, each presenting its own specific advantages and tradeoffs.
Learn About Strong Authentication Best Practices
Considerations for Selecting a Multi-Factor Authentication Solution
With the plethora of access control offerings available today, it is important for organizations to carefully evaluate the available solutions before making a decision on which solution to implement. When choosing a solution, organizations should take a number of factors into account. The following are some questions to consider:
Do I want to protect my internal network from unauthorized access?
If so, consider two-factor authentication (2FA) solutions that enable flexible and comprehensive secure network access, both in the office and remotely if needed.
Do my users need to connect from remote locations?
If so, consider portable solutions that enable secure VPN and web access for remote users, and that enable employees to secure their laptops and data while on the road.
Do my users need to access many password-protected applications?
If so, consider solutions that provide single sign-on functionality, either by storing user credentials on the token or by integrating with external single sign-on systems.
I want my users to digitally sign and encrypt sensitive data or transactions?
If so, consider smart card-based solutions that provide secure onboard PKI key generation and cryptographic operations, as well as mobility for users.
How sensitive is my business data?
The more sensitive the data, the higher the priority on the robustness and security of the solution.
Do I want to firmly protect data that sits on my users’ PCs and laptops?
If so, consider token solutions that integrate with PC security products such as boot protection and disk encryption applications that require the use of a token to boot a computer or decrypt protected data.
Have I or do I want to implement a secure physical access solution?
If so, consider token solutions that enable integration with physical access systems.
Gemalto allows organizations to meet the IT challenges of cloud, mobility, and escalating threats with authentication management platforms that offer flexible and simplified service delivery, and which address numerous use cases with the broadest range of authentication methods and tokens.
Gemalto MFA Products:
More and more businesses embrace the benefits that derive from managing their data and applications in the cloud. As users access sensitive assets from a greater variety of devices and locations, organizations become vulnerable to new threats. AaaS enables organizations to easily apply strong authentication onto multiple access points.Learn More About AaaS
Gemalto AaaS Products:
Gemalto offers the most comprehensive identity access and management systems to administer, monitor, and manage strong authentication deployments across the organization.Learn More About Authentication Management
SafeNet Management Platforms:
Offering the broadest range of methods and form factors, SafeNet allows customers to address numerous use cases, assurance levels, and threat vectors with unified, centrally managed policies—managed from one authentication back end delivered in the cloud or on premise.Learn More About Authenticators
view MFA Solutions
Gemalto’s security applications consist of middleware and password management software that enable users to securely store and manage user credentials.Learn More About Security Applications
Gemalto Security Applications Products:
Do You Have Control of Your Data?
Organizations are facing new access control challenges as mobile devices become the computing platform of choice, as organizations rapidly adopt Software-as-a-Service (SaaS) and cloud-based applications, and as threat vectors escalate.
SafeNet allows organizations to adapt their business and security needs to meet these challenges with access security solutions that offer flexible service delivery which simplifies authentication implementation and management through automated processes, and which drastically reduce the time and cost of provisioning, administration, and managing users and tokens compared to traditional models.
Administrators need to create consistent policies for secure access via VPNs and keep their identity and access management solution flexible, cost-effective, and easy to-deploy.Learn How Our Solutions Secure VPNs
The growth in the use of virtualized environments – particularly Virtual Desktop Infrastructure (VDI) solutions – is challenging businesses to overcome the vulnerabilities of fixed passwords.Learn How Our Solutions Secure VDIs
With context-based authentication, employees can easily and securely access enterprise and SaaS applications, as long as they meet pre-defined policy rules set in advance by the administrator.Learn About Our Context-Based Solutions
Additional Uses Cases
In addition to the above, by combining authentication with encryption and cryptographic key management, SafeNet customers can address the following high-priority security needs throughout their organizations.
view Industry Solutions
By adopting an information-centric approach you can meet the data compliance needs of today while staying persistently compliant with new mandates.Learn more about Data Compliance
Industry-Specific Data Protection Solutions
Offering solutions that are industry-specific, SafeNet is able to serve the particular requirements of our customers, protecting the world’s leading organizations in finance, retail, healthcare, and more.
Gemalto is the market leader in financial data security for the world’s largest financial institutions protecting over 80% of the world’s fund transfers, providing transaction security for five of the world’s largest central banks.Learn more about Financial Data Security
With Gemalto solutions, healthcare organizations achieve and maintain compliance by protecting sensitive data, such as patient records, medical transactions, and intellectual property for pharmaceutical and medical patents.Learn more about Healthcare Data Security
Retailers utilize Gemalto solutions to secure customer data inside their organizations and achieve compliance with all retail data privacy mandates.Learn more about Retail Data Security
White Papers & Other Resources
The surge in high-profile security breaches, as well as evolving business environments that require entirely new considerations for access control - like Software-as-a-Service (SaaS) applications and mobile device management - represents a shift in how trust and control is established and maintained.
More than ever, authentication is vital for the health of any organization – empowering admins to secure access to corporate networks, protect the identities of users, and ensure that a user is who he claims to be. Check out the below resources to learn how your organization can utilize and benefit from multi-factor authentication solutions.
The Magic Quadrant for User Authentication depicts Gartner's independent analysis of authentication vendors in the marketplace. Positioning within the quadrant is based on an organization's ability to execute and completeness of vision. Gartner has positioned SafeNet in the leaders quadrant.
A significant number of high profile security breaches have occurred recently, bringing the organizations affected to the front pages of the business press. These events have had a negative impact on the public image of these companies, and may also have a harmful effect on their business. These incidents have caused the CIOs of many companies to reevaluate their info-security strategy in general, while also placing specific focus on their user access control and transaction security requirements.
In today’s environment, the need for organizations to enable secure remote access to corporate networks, enhance their online services, and open new opportunities for e-commerce is bringing ever-growing attention to the importance of securing user access and validating identities. In addition, the recent barrage of identity theft and corporate fraud cases has brought corporate responsibility and the protection of sensitive data to the spotlight.
When the news broke that RSA had been breached, there was a lot of whispering in the corridors about how terrible this must have been for them. For sure, there have been plenty of breaches recently, and this highlighted that no network is impenetrable anymore.
Find More Resources in Our Libraryview Overview
Whether IT organizations choose to embrace, resist, or deny them, the reality is that the increased prevalence of mobile devices in the enterprise presents a range of fundamental implications. This paper examines the paradigm shifts taking place in enterprise IT organizations today, and then focuses on the key implications the proliferation of mobile devices has for mobile authentication.