“The Access Management space is ripe for an appliance-based solution. Much like the firewall market progressed from software on a server to appliances, the Access Management market will likely move in this direction as well, as ease of deployment and maintenance are key customer requirements in this space.”
-- Earl Perkins
Gartner Research
Collateral Links:
ID-Mark
In environments that require an increased level of accountability and non-repudiation of events, an optional ID-Mark™ driver can be installed on the client workstation to further enhance security.
How it Works
Once installed, the ID-Mark driver is a seamless 220KB memory resident DLL that does not change the end user experience in any way. The ID-Enforce gateway leverages the User ID to assign a signature pattern to the traffic generated by a user. The driver then appends that signature pattern to the payload in the form of a 24 byte hash which can be periodically refreshed during a user session. As the traffic traverses the gateway, the tag is stripped out of the traffic before forwarding it on to the target resource. When combined with two-factor authentication such as SecurID, this provides an irrefutable chain of evidence for non-repudiation of events.
Web-Based Authentication
In addition to the ID-Mark driver and agent, Applied Identity provides an alternative Web-based authentication mechanism to allow access to protected resources if the agent cannot be installed on the host system. This approach has zero impact on user client system with no additional software, no changes to the Windows operating system and no Java/ActiveX components are installed.
To access the protected resources the user must authenticate via the gateway portal, which in turn passes the authentication credentials to the directory for validation prior to granting access. The Web-based authentication page is fully customizable and is useful for “guest access” in which all resource events are logged.
