SaaS Solution delivers secure remote access to VPNs.
September 11, 2008 -
Only requiring Web browser, myOneLogin VPN Authentication offers standards-based, multifactor authentication solution for remote access to SSL VPNs. Support for Security Assertion Markup Language federation gives organizations security of 2-factor authentication while only requiring employees and partners to enter username and password. Solution also eliminates need for issuing/supporting one-time password tokens while providing un-phishable alternative with on-demand technology.
Original Press release
1900 Alameda de las Pulgas
San Mateo, CA, 94403
TriCipher Delivers Secure Remote Access as a Service with myOneLogin VPN Authentication
New Solution Offers On Demand Strong Authentication to SSL VPNs With Minimal Barrier to Entry
LOS GATOS, Calif., Sept. 3 -- TriCipher, the strong authentication company, today launched myOneLogin VPN Authentication, bringing the convenience of software as a service (SaaS) to Secure Socket Layer (SSL) Virtual Private Networks (VPN) remote access. Businesses need only a simple Web browser to start benefiting from the technology, making it easy to transition from traditional on-premise SSL VPN authentication solutions to myOneLogin VPN Authentication.
The solution is the first standards-based, multifactor authentication solution for SSL VPNs that supports Security Assertion Markup Language (SAML) federation, giving organizations the security of two-factor authentication while only requiring employees and partners to enter a username and password.
The technology -- priced at $1 per user per month -- eliminates hardware, software and operational costs associated with SSL VPN token authentication, saving nearly $50 per user in annual overhead operating expenses. In addition, users will no longer have to manage another device to remotely access corporate networks.
For organizations authenticating remote users with usernames and passwords, myOneLogin VPN Authentication provides far stronger security while maintaining the same login process. The solution provides a unique two-way SSL connection and stores part of the credential in TriCipher's server behind the scenes, preventing password theft by requiring the server and user to authenticate each other.
For organizations authenticating users with one-time password (OTP) tokens, myOneLogin VPN Authentication eliminates the need for issuing and supporting tokens, while maintaining the same or higher levels of secure access.
"Experience teaches us that passwords are only as secure as the habits of the individuals using them," said John De Santis, CEO of TriCipher. "As organizations open their networks to more staff and partners from more locations, they must secure and control access without further burdening users."
Businesses continue to expand their remote workforce to reduce the impact of rising fuel costs, support 'green' business initiatives and plan for potential disaster response and pandemic planning. SSL VPNs enable remote work by encrypting network traffic from outside the network, but until now could only rely on costly or weak authentication. myOneLogin VPN Authentication provides an un-phishable, cost-effective alternative to tokens coupled with the convenience of on-demand technology.
The Convenience of SaaS
As a SaaS offering, myOneLogin VPN Authentication can be deployed across any size organization in as quickly as a few days. The solution is part of the TriCipher myOneLogin family, allowing integration with secure, single sign-on (SSO) to more than 150 Web applications, such as Google Apps, Microsoft Outlook Web Access, Webex and travel sites.
In addition, the myOneLogin service maintains an audit log of all SSL VPN access for internal monitoring and compliance reporting.
According to Gartner, "Security-as-a-service is a delivery option that offers several features attractive to enterprises and to smaller businesses ... Security-as-a-service functions can result in lower costs and more-rapid implementation ... Enterprises should begin to develop well-defined interfaces for identity and access management endpoint security that can be delivered as a service to take advantage of the potential for lower-cost service delivery and minimal switching costs during the next five years."(1)
For more details on myOneLogin VPN Authentication please visit: http://myonelogin.com/vpn_authentication.html.
TriCipher, Inc. provides a unified authentication infrastructure to protect web and enterprise portals, the people that use them and the business process that flows through them against fraud and identity theft. The TriCipher Armored Credential System(TM) (TACS) is the first authentication system that enables companies to deploy and manage multiple types of credentials from a single infrastructure. Through this flexible "Authentication Ladder," TriCipher protects customer investment by adjusting authentication strength to defeat new threats and to meet regulatory changes without the need to implement a new infrastructure. Recently, TriCipher introduced myOneLogin(TM) the first secure on-demand offering that delivers strong authentication, single sign-on (SSO) convenience and the ability to seamlessly integrate multiple Software as a Service (SaaS) applications in a single solution. Founded in 2000, TriCipher is headquartered in Los Gatos, Calif. The company is funded by ArrowPath Venture Capital, EPIC Ventures, Intel Capital, RBC Technology Ventures, and Trident Capital. For more information, visit TriCipher on the web at www.tricipher.com.
(1) Gartner, Inc. "Selecting the Right Targets for Security as a Service" by Kelly M. Kavanagh and John Pescatore, November 14, 2007