Each computer device has its unique characteristics. DevicePass creates a unique “deviceprint”, a digital fingerprint of the device, using the device’s characteristics. Combining the deviceprint with a user name and password, corporate can restrict network access to only trusted devices and authenticated users.
DevicePass provides a simple, cost-effective way to achieve strong, two-factor authentication for remote access to enterprise networks.
Key Features
One-Time Password - Once a device has been registered, its deviceprint will not be directly used in the authentication process. Instead, in every authentication, a one-time password associated with the deviceprint is generated and submitted to the server. This innovative way of authenticating a device using its associated one-time password prevents the replay attack.
Real-Time Interrogation - Furthermore, the DevicePass client does not store the deviceprint. At each authentication request, the DevicePass client checks the hardware parameters in real-time, makes the replay attack impossible.
Auto Synchronisation - DevicePass offers the flexibility that allows the user to change some hardware components in their device, without re-registering the device. If a device becomes “unsynchronised” as the result of hardware changes, DevicePass can automatically update the deviceprint with the new hardware configuration as long as the changes are within the allowed threshold set by the service provider.
Code Protection - The DevicePass client software is protected by anti-tampering technologies, preventing it from reverse engineering.
Registration
A device must be registered before it can be used to authenticate the user. During the registration process, the deviceprint is created, encrypted and submitted to the authentication server. The registration process can be carried out by the system administrator or the users. If the registration is carried out the user, a unique activation code is sent to the user through a protected channel, such as secure email, post mail etc. A device can only be registered with a valid activation code.
Authentication
During the authentication process, the user first launches the DevicePass client software and then asks the client to generate a one-time password. The user then enters the one-time password into the VPN client application, together with their user name and/or account password. The user name, account password and the one-time password are then submitted to the server to be verified. If the one-time password matches the user’s deviceprint stored in the database, the user is then granted access to the network.
Requirements
Client Platforms:
DevicePass client is a Windows application that runs on:
- Microsoft Windows 2000
- Microsoft Windows XP
Server Platforms:
DevicePass is verified by the Deepnet Unified Authentication server – a unified, cross-platform authentication server that runs on any JAVA enabled operating system, including:
- Windows
- Linux
- Unix
- Sun Solaris
Key Benefits
User Friendly
DevicePass is simple to install, register and use. When integrated with the user’s VPN client, it provides transparent two-factor authentication through the same authorization process that users are already familiar with.
Cost Effective
DevicePass provides strong two-factor authentication solution without additional expensive hardware or complex software. It is easy to deploy and cost effective to maintain and support.
Next Step
→Click here to request an online demo.
→Click here to request more information.
→Click here to download this document in PDF format.