Single sign-on includes physical access

August 2006 Information Security, Information Security

The convergence of physical and logical security has taken a step forward with the introduction of Imprivata's single sign-on solutions. A US-based company, Imprivata develops single sign-on solutions that simplify the complexity of managing multiple passwords for numerous applications.

Using a patented recognition engine, the system recognises any application in any interface as it is called up and automatically logs into the system based on the user's authenticated identification.

"It does not matter whether the application is Web-based, Unix, a 32-bit Windows or Java system, or even an old green-screen mainframe program," Wayne Parslow, VP of EMEA operations for Imprivata explains, "the user will be logged in automatically. The recognition algorithm is similar to the ones used in biometric engines (the ones that deliver tight security), allowing secure single sign-on access to any application without having to make any modifications to the system."

The box that makes this all happen is the Imprivata OneSign appliance, an easy-to-use appliance that slots into any standard server rack. Parslow adds that the idea behind the appliance was to make it as simple as possible to implement and maintain single sign-on, reducing the need for expensive administrators and programmers. It includes built-in reporting capabilities to help ensure regulatory compliance and OneSign supports a host of authentication solutions out of the box, including ID tokens, smart cards, finger biometrics, proximity cards and Kerberos.

Logging the door

In an alliance between S2 Security Corporation (S2) and Imprivata, the companies have released a joint solution that will enhance single sign-on logical security by linking virtual access to a user's actual location.

The new product combines the OneSign access and authentication appliance platform with S2's NetBox physical access security solution. The converged solution delivers an integrated physical/logical access system that allows companies to use information about a person's physical location as a factor in their access privileges.

The security features can be expanded even further, assigning different security levels depending on location. If someone logs in from home, they could be allowed access to their e-mail and documents, but they may be prevented from changing any documents. And with wireless networking becoming more popular, an organisation could allow employees to access a wireless network from anywhere within the business premises, but not from outside, like a car park for example. These additional security precautions raise the level of logical security beyond its current capabilities, improving the control companies have over who accesses their systems from where, making it harder for criminals to get into the corporate network.

For more information contact Nichola Allen, G2 Security, +27 (0) 11 462 5700, [email protected]





Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...
Crypto in SA: between progress and precaution
Information Security
“As cryptocurrency gains momentum and legitimacy, it’s becoming increasingly important for people to pay attention to financial security”, says Richard Frost, head of technology and innovation at Armata Cyber Security.

Read more...
Cyber recovery requires a different approach to disaster recovery
Information Security
Disaster recovery is about getting operations back on track after unexpected disruptions; cyber recovery, however, is about calculated actions by bad actors aiming to disrupt your business, steal sensitive data, or hold your system hostage.

Read more...
MDR users claim 97,5% less
Sophos Information Security
The average cyber insurance claim following a significant cyberattack is just $75 000 for MDR users, compared with $3 million for endpoint-only users, according to a new independent study.

Read more...
The impact of GenAI on cybersecurity
Sophos News & Events Information Security
Sophos survey finds that 89% of IT leaders worry GenAI flaws could negatively impact their organisation’s cybersecurity strategies, with 87% of respondents stating they were concerned about a resulting lack of cybersecurity accountability.

Read more...
Efficient, future-proof estate security and management
Technews Publishing ElementC Solutions Duxbury Networking Fang Fences & Guards Secutel Technologies OneSpace Technologies DeepAlert SMART Security Solutions Editor's Choice Information Security Security Services & Risk Management Residential Estate (Industry) AI & Data Analytics IoT & Automation
In February this year, SMART Security Solutions travelled to Cape Town to experience the unbelievable experience of a city where potholes are fixed, and traffic lights work; and to host the Cape Town SMART Estate Security Conference 2025.

Read more...
Kaspersky KATA 7.0 for targeted attack protection
Information Security Products & Solutions
] Kaspersky has announced a major update to its Kaspersky Anti Targeted Attack (KATA) including enhanced network detection and response (NDR) capabilities with deeper network visibility, internal threats detection and other critical security features.

Read more...
The role of advanced technologies in ransomware recovery
Information Security
As businesses increasingly adopt cloud technologies, the complexities of maintaining resilience and ensuring rapid recovery from such incidents become even more pronounced. The integration of advanced technologies is essential to navigate these challenges effectively.

Read more...
Cybersecurity best practice
Information Security Security Services & Risk Management
Breach and attack simulation has become an essential element of cybersecurity strategies in any modern business by allowing companies to actively detect and resolve vulnerabilities through real-world attack simulations.

Read more...
Empower individuals to control their biometric data
Information Security Access Control & Identity Management Security Services & Risk Management
What if your biometrics, now embedded in devices, workplaces, and airports, promising seamless access and enhanced security, was your greatest vulnerability in a cyberattack? Cybercriminals are focusing on knowing where biometric data is stored.

Read more...