|
Arcot Debuts Software Alternative to Smartcard
By Jack M. Germain
August 24, 2005 12:20PM
Most user-authentication systems are built around the concept of blocking unauthorized access to a network. ArcotID, however, relies on a system designed to trap unauthorized users after they attempt to break in to the network.
Arcot Systems has introduced ArcotID, a software-only, two factor authentication product designed to give CIOs a cst efficient alternative to hardware tokens and smartcards in protecting coporate networks against unauthorized access.
ArcotID also can help provide a reliable short-term method to secure the enterprise network while I.T. departments deploy traditional authentication products that use more expensive software-hardware encryption methods.
"It takes longer for large companies to roll out hardware such as tokens and smartcards," said Rob Stuhlmuller, director of product management for Arcot. "Placing smartcard readers on each computer to guarantee user identification is expensive."
User Authentication
Most user-authentication systems are built around the concept of blocking unauthorized access to a network. ArcotID, however, relies on a system designed to trap unauthorized users after they attempt to break in to the network.
Arcot officials said the two-factor, software-security system provides hardware-strength digital authentication and signing in a software package that can work across application and network environments and is more cost-effective than hardware alternatives.
Arcot's software method envelops the encrypted password keys in a secure digital container. Given its software format, the ArcotID is portable, allowing the user to authenticate from any location. In addition, it can be stored on any supported client device or issued on a CD or USB memory device.
"Access to corporate networks can be up and running through these software keys very quickly," said Stuhlmuller. "The software security then can be transferred to a hardware smartcard later on."
Innovative Camouflage
Arcot's software is built on two core technologies. One is a digital certificate that provides the users with industry-standard, private-key credentials for digital signing and authentication. The other is the company's own "cryptographic camouflage," which is a patented software technology that uses cryptography to camouflage the private key rather than encrypting the user's information.
This method can help defeat would-be intruders who use automated cracking tools. The camouflage technique hides the correct solution to password challenges among a large number of incorrect responses.
For instance, a six-digit password would be camouflaged within 1,000,000 seemingly legitimate numbers, leaving the intruder with only random guesses as to which password is correct. After a set number of failed attempts to access the system, would-be intruders are blocked from accessing the network.
|
