• IP networks
• Firewalls
• VPNs
• Network monitoring solutions
• Email filtering systems
• Intrusion detection & prevention devices
• Wireless networking systems

Authentication and transaction verification capabilities

Authentication is the process of determining whether someone or something is, in fact, who or what it is declared to be. In private and public computer networks, authentication is commonly done through the use of passwords. The weakness in this system for transactions that are significant or involve the exchange of money is that passwords can often be stolen, accidentally revealed, or forgotten. Baker Security & Networks partner with the following organisations to deliver strong authentication solutions.

ValidSoft authentication solutions

ValidSoft solutions provide strong authentication and transaction verification capabilities allowing organisations to quickly implement solutions that protect against the latest sophisticated fraud and are yet simple and convenient for users.

With the increasing sophistication of electronic fraud including man-in-the-middle and man-in-the-browser attacks, financial institutions will have to re-evaluate their approach to providing strong authentication to protect their customers. Recent security incidents have demonstrated that these forms of sophisticated attack are becoming more common and are no longer viewed as theoretical. Traditional forms of strong authentication have been found to be vulnerable to these forms of attack.

ValidSoft has recognized this for several years and has developed a strong authentication and transaction verification product suite specifically designed to counter these latest forms of sophisticated fraud.

ValidSoft has developed VALid® to enable financial institutions combat electronic fraud through strong authentication and automated transaction verification. The solution enables users of mobile and fixed line phones and other wireless devices to access secure services over electronic channels without having to carry a separate physical security token or having to use a nominated PC.

CryptoCard two factor secure authentication

• Flexibility: CRYPTO-Shield has the ability to adapt to any type of network infrastructure an organization has in place, and is available for Windows, Linux, or Mac platforms. Customization tools are available to mold the functions of CRYPTO-Shield to meet specific security policies and satisfy multiple compliance requirements.
• Low Total Cost of Ownership: Many vendors have obsolescence built into their products, such as tokens that expire after 3 years or license contracts that need to be renewed annually. CRYPTOCard offers tokens with a 5-year warranty that never expire due to replaceable batteries. CRYPTO-Shield is also based on a perpetual license agreement, which requires that the license only needs to be purchased once. No annual license renewals required, just a low cost support and maintenance contract.
• Simplicity: CRYPTOCard prides itself in offering the easiest and most user-friendly positive identification solutions in the industry. CRYPTO-Shield is extremely easy to set up as the LDAP does not need to be changed and directories can be directly imported into CRYPTO-Shield. The administration console allows for easy user and token management. Due to excellent usability and documentation, administrators do not require advanced technical skills to manage the system.
• Higher Security: CRYPTO-Shield provides organizations with the ability to implement and operate the strongest two-factor authentication solution in the industry. rganizations can initialize their own tokens, therefore keeping the seed keys confidential. Encryption algorithms can be as strong as AES 256, and one-time password can be as strong as 8 character Base64 - the most secure type of password available. CRYPTO-Shield also offers the option of attaching digital signatures for non-repudiation of signed documents or transactions.
• Greater User Satisfaction: Not only will organizations get the benefits listed above, the end users will be happier not having to remember complex passwords and will place fewer password related helpdesk calls.
• Greater User Satisfaction: Not only will organizations get the benefits listed above, the end users will be happier not having to remember complex passwords and will place fewer password related helpdesk calls.