WIXLIB

E-GuideDO YOU HAVETHE RIGHTAUTHENTICATIONTOOLS TO KEEPTHE BAD GUYSOUT?SearchSecurity

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?HomeThe top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewMbe acritical component of an enterprisesecurity strategy. In this e-guide, we takea look at the top MFA products in theindustry to help you make the right purchasing decision for yourorganization.PA G E 2 O F 1 6ultifactor authentication canSPONSORED BY

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?THE TOP MULTIFACTOR AUTHENTICATION PRODUCTSJames Miller, Senior Products EditorHomeThe top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewMultifactor authentication (MFA) is a method of boosting IT security that requires end users to provide multiple methods of identification to confirm theiridentity for gaining access to corporate resources and applications, as well asperform online transactions. By requiring an additional factor beyond a simplepassword (such as software on a smartphone, a fingerprint, a voiceprint, a keyfob or a security code), MFA technology makes it far more difficult for hackersto exploit the login process and wreak havoc by stealing corporate, customer orpartner data -- even when a password has been compromised or shared amonga number of different services by an end user.Organizations that have made (or are in the process of making) the decisionto deploy MFA technology should bone up on the criteria for evaluating andprocuring multifactor authentication products. That way, when it comes timeto select the right MFA product, the company will be well-versed on what MFAproduct features best match the use cases (Active Directory augmentation,strong identity verification and/or the strengthening of Web server logons)PA G E 3 O F 1 6SPONSORED BY

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?HomeThe top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewthat apply to its environment and authentication needs.With so many vendors offering MFA products and services, choosing theright product can be overwhelming -- no matter how knowledgeable and prepared an organization is going into the evaluation process. Here is a list of thetop multifactor products in the market to help get enterprises started.EMC RSA AUTHENTICATION MANAGER AND RSA SECURIDRSA SecurID -- the token-side EMC RSA Authentication Manager -- is theMFA product that has been around the longest. It has a large number of supported applications that can be secured with its multiple factors and has thelargest market share of hardware tokens. For its part, EMC RSA Authentication Manager can be set up for some very complex token approval workflows,and it sports a self-service Web portal that end users can use to perform common token management tasks. To learn more about EMC RSA AuthenticationManager and RSA SecurID, read the full review.SYMANTEC VALIDATION AND ID PROTECTION SERVICELike EMC RSA, Symantec is a top-tier multifactor vendor that has been in theMFA game a long time. Symantec Validation and ID Protection Service (VIP)PA G E 4 O F 1 6SPONSORED BY

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?HomeThe top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewsupports a wide selection of hardware and software tokens, including desktopand smartphone apps (using both SMS service and voice calls). And, not onlydoes the service provide more than 30 different integration methods for common apps, its credentials are so popular, they are currently used to authenticate more than 100 different websites. To learn more about the Symantec VIPService, read the full review.CA STRONG AUTHENTICATIONCA Strong Authentication from CA Technologies comes in both a Windowsversion and as a Software as a Service (SaaS) version called CA Secure Cloud.It includes full administration capabilities to configure policies, monitor activity and investigate suspected attacks, making it easier to keep track of tokensand to understand which applications support tighter MFA security. A moreunique feature to Strong Authentication allows organizations to not store ortransmit passwords. This, in effect, makes passwords "unbreachable." To learnmore about CA Strong Authentication, read the full review.VASCO IDENTIKEY SERVER AND DIGIPASSIDENTIKEY Server includes multifactor software tools and DIGIPASS tokensPA G E 5 O F 1 6SPONSORED BY

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?HomeThe top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewfrom Vasco Data Security Inc. As one of the most comprehensive MFA products on the market, it supports a wide selection of token and server types,mobile operating systems and smartphones, and authentication methods.Meanwhile, in addition to providing authentication plug-ins for Outlook WebAccess, Citrix, Microsoft's Internet Information Web Server and Remote Desktop Web interfaces, Vasco offers an API-based product that allows customers tointegrate multifactor authentication into existing applications. To learn moreabout Vasco Identikey Server and DIGIPASS, read the full review.SECUREAUTH IDPSomewhat unique among the products in this article (Okta Verify is the onlyother one), SecureAuth IdP is both a multifactor and a single sign-on authentication product. So in addition to offering a solid array of MFA features, suchas support for multiple hardware and software tokens, organizations can connect SecureAuth IdP to directory services such as Active Directory to allowusers to sign into a Web-based portal that authenticates them for a portfolioof applications. That way these users don't have to remember -- or even know(in some instances) -- their individual passwords for these programs. To learnmore about SecureAuth IdP, read the full review.PA G E 6 O F 1 6SPONSORED BY

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?DELL DEFENDERHomeThe top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewAcquired with Dell's acquisition of Quest Software, Dell Defender is a mid-tierauthentication product that combines a good assortment of features with support for the common multifactor use cases at good price. When an organizationenables users, they can go to a self-service portal to either request a softwaretoken or register a hardware token. Defender also integrates with Dell's CloudAccess Manager, which supports Security Assertion Markup Language loginsto cloud-based services and extends multifactor authentication to those services. To learn more about Dell Defender, read the full review.SAFENET AUTHENTICATION SERVICEThe SafeNet Authentication Service supports a wide variety of token, mobileand desktop authenticators. The service is also unique in that it supports aninteresting "grid" hardware-based token that asks users to type in a patternand offers subscription-based pricing, which includes a single copy of its serversoftware and one SMS token per user. This makes it easier for organizationsto calculate expected deployment costs. In addition, SafeNet has the mostextensive policies, role assignments and user groups of any of the MFA products highlighted in this article, which makes it easier for IT to set up differentPA G E 7 O F 1 6SPONSORED BY

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?authentication levels for different individuals and groups. To learn more onSafeNet Authentication Service, read the full review.HomeThe top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewOKTA VERIFYLike SecureAuth IdP, Okta Verify is both an MFA and SSO product. As an MFAtool, it adds security measures to standard username/password logins to avariety of servers and services. And, as an SSO tool, it allows end users to signinto a Web-based portal that serves as the basis of the authentication of an organization's SSO app portfolio. Unlike other MFA products, Okta has a uniquefeature called Just in Time provisioning that allows customers to import alltheir Active Directory accounts and set authentication up so that when endusers are ready to start using the SSO component, Verify can attempt to createtheir accounts on the fly. To learn more on Okta Verify, read the full review.CONCLUSIONAll the products highlighted in this article are solid MFA platforms. They support multiple token types and provide flexibility in terms of authenticationmethods supported.There are differences between them, however -- including in pricing,PA G E 8 O F 1 6SPONSORED BY

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?Homeadministration and reporting -- and in how they support mobile devices andnew technologies like risk-based authentication and standards such as FIDO.So it behooves organizations that are looking to deploy multifactor authentication technology to take all those elements and more into consideration whenmaking an MFA product selection.The top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewPA G E 9 O F 1 6SPONSORED BY

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?EMC RSA AUTHENTICATION MANAGER AND SECURID MULTIFACTOR AUTHENTICATION PRODUCT OVERVIEWHomeThe top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewDavid Strom, ContributorRSA Authentication Manager from EMC is a multifactor authentication (MFA)software tool that adds additional security measures (via smartphones andbiometrics) to standard user name/password logins for a number of servicesand servers. By doing so, it prevents unauthorized logins, even when passwordshave been compromised and were shared among many different services.Like a number of other MFA products examined in this series, EMC RSAAuthentication Manager is especially suitable for those organizations thatwant to make use of a variety of external software as a service (SaaS) products,such as Google Docs, Salesforce.com and Outlook Web App.SecurID is the token side of RSA Authentication Manager and handles theconfiguration of the individual tokens. Given the wide range of token types supported, IT managers will want to spend some time with this tool to understandhow it works.PA G E 1 0 O F 1 6SPONSORED BY

DO YOU HAVE THE RIGHT AUTHENTICATION TOOLS TO KEEP THE BAD GUYS OUT?AUTHENTICATION MANAGER PRICING AND LICENSINGHomeThe top multifactorauthenticationproductsEMC RSAAuthenticationManager andSecurID Multifactorauthenticationproduct overviewRSA offers two different licenses for Authentication Manager: base and enterprise. A base license supports one replica of the primary user data store,while the enterprise license supports up to 15 different replicas for better loadbalancing and backup purposes.The retail price is nearly ten times as expensive as the least pricey MFAproducts, such as CA's Strong Authentication. This includes a perpetual software license and an annual fee for the software tokens. The quote price inthe table below doesn't include an annual maintenance contract, which addsanother 1,785 to the fee. Additional tokens cost 17 per user per year. AndRSA sells Authentication Manager primarily through more than 500 channelpartners worldwide, not directly.PA G E 1 1 O F 1 6SPONSORED BY