Cryptoshop Help! Cryptoshop Contact! Cryptoshop Memo! Cryptoshop Shopping Cart! Place your order! Change to german site!
+ Products
· · · · · · · · · · · · · · · · · · · · · · ·
+ Solution
· · · · · · · · · · · · · · · · · · · · · · ·
+ Knowledge Base
  Security Targets  
  Security Governance  
  Cryptography  
  Technology  
  Smart Card applications  
  Authentication  
  Passwords vs. OTP vs. PKI  
  Knowing - Passwords  
  Having - Token  
  Being - Biometrics  
  Single Sign On Systems  
  PKI  
  How to  
· · · · · · · · · · · · · · · · · · · · · · ·
+ Service
· · · · · · · · · · · · · · · · · · · · · · ·
     
Management
· · · · · · · · · · · · · · · · · · · · · · ·
Security Officer
· · · · · · · · · · · · · · · · · · · · · · ·
System Engineer
· · · · · · · · · · · · · · · · · · · · · · ·
Purchasing
· · · · · · · · · · · · · · · · · · · · · · ·
Maintenance
· · · · · · · · · · · · · · · · · · · · · · ·
 
 
Please note, that the Knowledge Base isn't translated to english completely at the moment. You will still find some german texts - we are translating permanently the outstanding parts! Thank you for understanding!

Single Sign On Systems
 
INFO & KNOWLEGDE
 
A PKI can be seen as Single Sign On System, but true Single Sign On solutions have to find a way to handle all the applications with password authentication. Single Sign On systems which are storing passwords, are solving the problems that come with unsecure handling of passwords by the user, the technical issues remain the same.

password synchronisation
Password synchronisation as Single Sign On is trying to use the same password for all applications, because of the reduced number and the frequent use of this password it is easier for the user to choose and memorise.

But this password is a "Single Point of Weakness". the strong password has to be handled in secure manner, compromised once it is possible to logon everywhere. All applications are needing an agent or plugin for synchroisation, the change has to be done in a secure way.

Authentication Server
The central authentication server approach is based on the idea to hold the sensitive data of all applications in a central secure server respective all user credentials. Such solutions can be used well with multifactor authentication like, token, smart cards, biometrics or one tim pass solutions.

The central authentication server is realised by some solutions with appliances, which makes it easier to integrate and administration in existing infrastructures.

These solutions need an agent, plugin or other function to work with the authentication server.

Certificate based SSO
Using a certificate from a PKI is single sign on in a certain way, it is single sign on for all applications capable of PKI-authentication. With the collaboration of Kerberos this can be done once - but all applications must be capable of Kerberos.

But a PKI has a certain degree of complexity, the security of the private key has to be assured. Security devices like a smart card (or token) are the perfect place for such keys.

Passwortbased Smart Card SSO
The level of protection, which a smart card is offering, is also a good place for storing passwords of any length and security level. Single Sign On Solutions which are storing passwords on a smart card can be integrated fast in an existing infrastructure.


One-Time-Pass - Systems


PKI


Safenet Borderless Security - Single Sign On   Safenet BSEC SSO is a full software and smart card solution for simple and secure Single Sign On which is covering full bandwith of authentications on applications and network.

IMPRIVATA OneSign   IMPRIVATA OneSign is a redundant eine redundant designed Enterprise Single Sign On Solution, based on appliances. The solution is seamless integrated into the directory of the organisation.


Back to previous page!Top of page!To the startpage of Cryptoshop.com!
  PKI  
  One-Time-Pass - Systems  
 
  Special offer of the month!  
  Cryptoshop Bundles!  
 
  Single Sign On  
  Costs of a password system  
  Password protection and quality  
  Passwords vs. OTP vs. PKI  
  MS-Enterprise-CA  
 
Legal notice Terms and Condtitions Consumer notice Privacy Newsletter Copyright © 2004 CRYPTAS. All rights reserved