Within today’s Internet environment, cyber threats has become a prominent issue especially in enterprises that offers online application and e-services. Access control with a simple ID and password is no longer sufficient in face of all these threats. These credentials can be easily hacked and obtained through phishing, key loggers, social engineering, Trojan Horses, etc.
To enforce and protect the interests of enterprises and their users, a second-factor authentication (2FA) is introduced. This system allows for a second layer of authentication via hardware token or mobile code.
Different layer of security may require different kind of transaction depending on the sensitivity. This system offers 3 kinds of 2FA for the different requirements of each enterprise; normal One-time Password (OTP); Challenge Response and Transaction Signing.
DigiSAFE Authentication Gateway (DAUT) offers a seamless solution for enterprises to connect to Singapore’s National Authentication Framework (NAF) for 2FA service. It also allows enterprises to integrate with SingPassCorpPass (SPCP) using SAML 2.0 protocol.
DAUT is a proven 2FA gateway that meets government and financial institutes’ stringent security and availability specifications. It has been deployed and is currently providing 2FA for various for web portals, VPNs, operation system login, network devices and email in many government, financial and the online healthcare services.
DAUT integrates seamlessly with an array of devices and application, such as VPN 2FA login and windows 2FA login. Its suite of APIs supports different programming languages, is meant to support integration with existing enterprise IT systems.
DAUT complies with Singapore Technical Reference 29 (TR29) protocol. It provides the security compliance for NAF batch job file transfer through PGP encryption on SFTP interface.
DAUT build-in SAML 2.0 protocol API can seamlessly integrate with SingPassCorpPass SAML 2.0 interface.
DAUT simplifies the operation through a self-service and user-friendly management dash board. It is capable of generating various 2FA transaction reports as well as searching specific transaction records.
|Singapore National Authentication Framework (NAF) Compliance:||• Support Technical Reference 29 (TR29)
• Batch job interface: SFTP and PGP
|SingPassCorpPass Integration:||Support SAML 2.0 Interface|
|Support for 2FA Tokens:||• OneKey Hardware Token
• TR29-compliant Software Token
• SMS OTP
• SMS pass through
|Management portal:||• Self-Service management portal
• Users management and devices provision
• Generate reports on user information and authentication history
• Search for authentication records
• System alert through email or SMS
|Throughput:||50 transactions per second per appliance|
|High Availability:||• RAID configuration within appliance
• 2 or more DAUT can be configured to operate in High Availability or Disaster Recovery mode
|Physical Characteristics:||• Form Factor / Height: 1 U
• Power Supply: Redundant 460W hot-swappable
|Network Interface:||• Two Gigabit Ethernet ports standard|