True securityin virtual world

In the era of a computerized society a demand emerges to manage a vast number of users, data, communications systems and other electronic devices, in order to ensure a proper, authorized access to these resources. MALKOM, confronting these challenges, has developed an advanced software package called „Sec.QR-AS”, which realises the functions of a Central Authentication Server.

While creating this software the company aimed at ensuring a „single sing-on” (SSO) and optimizing the user functionality. The product is designed to integrate all heterogenic organization systems in one place, in order to acquire user management optimization of all data communication systems. Such approach has many advantages, starting with the ability to establish on one workstation user rights to all systems or denying access within one click, to the ability to unify user authentication methods on all applications and thus reducing the number of tokens (for example to one cryptographic card). „Sec.QR-AC” is an ideal solution for medium and big organizations having many homo- or heterogenic independent data communication systems, which are used by a collective group of users.

Sec.QR-AS is an all-purpose advanced software package, realising the functionalities of an authentication server based on RADIUS, 802.1x and SMAUP (developed by MALKOM) protocols. The software carries out functions of a common user and other objects repository, such as servers, workstations, access stations, terminals, applications, network devices.

The server software has support for HP-UX and LINUX platforms, and cooperates with clients under Windows, HP-UX, Linux, Solaris, AIX, CISCO IOS systems, as well as others supporting the compatible with the software standards. Sec. QR-AS server software as a database repository handles a universal database. It cooperates with ORACLE and POSTGRESQL databases.

Sec. QR-AS implementation gives advantage in many areas, out of which most important are:

• Economy: the reduction of telecommunication infrastructure maintenance expenses by ensuring a single user identity input and identity management from one terminal.
• Security: implementation of strong authentication methods, based on cryptographic SmartCard tokens, substantially reduces the risk of unauthorized access to data and other company resources.
• Administration: from one terminal system administrator has full view of user identity, as well as user rights to the system and other infrastructure objects.
• Maintenance: the user, using only one SmartCard token to log on to all telecommunication systems, is not strained to remember many passwords and logins to different applications, instead uses only one personal PIN authentication code.