2013 Gartner User Authentication Magic Quadrant Report

SafeNet, recognized again as a "Leader" in the Magic Quadrant for User Authentication

Overview
Authentication Products
Authentication Solutions
Authentication As A Service
Resources

Multi-Factor Authentication Overview

What People Are Saying

Jofre Palau
Principal Product Manager
Vodafone
"Before we deployed SafeWord, our medical professionals and other employees couldn’t access medical applications and data once they left the hospital. Now, we can provide the convenient access to medical resources that our staff needs, no matter where they are—while at the same time ensuring that we continuously safeguard the information patients entrust to us."
Niels Nijenhuis
IT Architect
Deventer Hospital
“MobilePass helps us to distinguish between friend and foe in a user-friendly way. Even our non-technical users are commenting on how easy the new OTP solution is. As the ICT manager, I just really like the simple implementation and integration.”
Matthijs Zegwaard
Manager ICT
Lexence N.V.
"The deployment of SafeWord and MobilePASS© across the company was very straightforward and the ability to centrally manage our authentication solutions is essential in maintaining control of our data…We’re confident that our investment in these proven technologies will safeguard our business-critical data for many years to come."
Peter Maljaars
Head of ICT
O'Neill Europe
"The availability and built-in capacity of SafeNet’s Authentication Service cloud delivery model not only proved to be able to scale with our business, but is able to do so in a very efficient and cost-effective manner."
Marc Chambault Product Manager
Integralis
"Enterprises looking to deploy the cloud want both enterprise-grade performance and security, while still benefiting from the scalability and economics of multi-tenant virtualization technology. Incorporating SafeNet’s authentication platform brings another best-of-breed offering to our platform and lays the foundation for further extensive security capabilities."
Dr. Shaw Chuang
Executive Vice President of Engineering
Virtustream

Multi-factor authentication serves a vital function within any organization -securing access to corporate networks, protecting the identities of users, and ensuring that a user is who he claims to be. Yet the recent surge in high-profile security breaches, as well as evolving business environments that require entirely new considerations for access control - like SaaS applications and mobile device management - represents a shift in how trust and control is established and maintained.

New threats, risks, and vulnerabilities as well as evolving business requirements underscore to the need for a strong authentication approach based on control, choice, and future-forward scalability.

Today, organizations are asking:

Who controls my token data?
How do I map authentication methods to business risk and the needs of my users?
Can I centrally manage, control and administer from one platform?
Am I set up to evolve to address new demands of my business - like Cloud and mobile devices?
How can I incorporate additional security layers, to help me further fortify against threats?
And how do I keep it all practical, and cost-effective?

More than ever, customers are looking for authentication software that delivers more - more strength, control, and choice.

Read on to find out how a Fully Trusted Authentication Environment can deliver just that.

What is Two Factor Authentication (2FA)?

Two-factor authentication ensures that a user is who they claim to be. The more factors used to determine a person’s identity, the greater the trust of authenticity.

Two Factor authentication can be achieved using a combination of the following factors:

something you know – password or PIN
something you have – token or smart card (two-factor authentication)
something you are – biometrics, such as a fingerprint (three-factor authentication)

Because multi-factor authentication security requires multiple means of identification at login, it is widely recognized as the most secure software authentication method for authenticating access to data and applications.

How to Strengthen Your Authentication?

SafeNet's multi-factor authentication software delivers the protection you expect, while enabling customers with broader choice, improved visibility, and the ability to expand into the future. We do this through our Fully Trusted Authentication Environment, which means that you have:

Better self-control of your data - SafeNet enables customers with the option to create and control their own token data, so there is no reliance on a third-party vendor
Improved management and visibility - SafeNet's solutions deliver single-server management, providing full control, simple administration, and reduced cost and staff burden
Expanded options - SafeNet delivers the broadest choice when it comes to authentication methods - so you can meet the needs of any user and any risk level (hardware or software, certificate-based authentication or traditional one-time-password, on-premise, or into the cloud)
Future-ready - with new solutions that deliver strong authentication and SSO for cloud applications as well as credentialing for mobile device management
Painless migrations - SafeNet offers two complete authentication migration bundles that include unique brokering functionality, which alleviates typical migration concerns and headaches.

The Need for Strong Authentication

Strong user authentication has been an increasingly essential component of the security framework — a vital means to ensure that users, no matter where they are, are in fact who they claim to be and are authorized to gain access to business services.

Strong authentication - also known as two-factor authentication —refers to systems that require multiple factors for authentication and use advanced technology, such as secret keys and encryption, to verify a user’s identity. The simplest example of strong authentication is a consumer’s ATM card. This requires something the user has (their card), and something they know (their PIN). Most people wouldn’t want their bank to allow access to their checking account with just one factor. Yet many organizations allow entrance to their valuable VPN, Citrix, and Outlook Web Access resources (often much more valuable than a single personal checking account) with only one factor—often a weak password. Strong authentication enables organizations to strengthen the protection of these vital resources.

While the decision to use strong authentication is clear cut, deciding on an approach is anything but. Today, there are hundreds of options, with each presenting its own specific advantages and tradeoffs.

Considerations for Selecting a Two-Factor Authentication Solution

With the plethora of strong and two factor authentication offerings available today, it is important for organizations to carefully evaluate the available solutions before making a decision on which solution to implement. When choosing a strong authentication solution, organizations should take a number of factors into account. The following are some questions to consider:

Do I want to protect my internal network from unauthorized access?
If so, consider two factor authentication solutions that enable flexible and comprehensive secure network access, both in the office and remotely if needed.
Do my users need to connect from remote locations?
If so, consider portable solutions that enable secure VPN and web access for remote users, and that enable employees to secure their laptops and data while on the road.
Do my users need to access many password-protected applications?
If so, consider solutions that provide single sign-on functionality, either by storing user credentials on the token or by integrating with external single sign-on systems.
I want my users to digitally sign and encrypt sensitive data or transactions?
If so, consider smart-card-based solutions that provide secure onboard PKI key generation and cryptographic operations, as well as mobility for users.
How sensitive is my business data?
The more sensitive the data, the higher the priority on the robustness and security of the solution.
Do I want to firmly protect data that sits on my users’ PCs and laptops?
If so, consider token solutions that integrate with PC security products such as boot protection and disk encryption applications that require the use of a token to boot a computer or decrypt protected data.
Have I or do I want to implement a secure physical access solution?
If so, consider token solutions that enable integration with physical access systems.

view Authentication Products

Multi-Factor Authentication Products

SafeNet Authentication management platforms support multiple use cases while provisioning a wide range of tokens, eliminating complex and costly IT infrastructures.

view Authentication Solutions

Authentication Solutions

Authentication serves a vital function within any organization -securing access to corporate networks, protecting the identities of users, and ensuring that a user is who he claims to be. Yet the recent surge in high-profile security breaches, as well as evolving business environments that require entirely new considerations for access control - like SaaS applications and mobile device management - represents a shift in how trust and control is established and maintained.

Workforce Authentication

An increasingly mobile workforce, the proliferation of mobile devices used by employees to access corporate resources, and the move to the cloud are blurring the boundaries of the traditional network security perimeter.

Learn more about Workforce Authentication

Secure VPN Access

In the current decentralized IT environment, the organizational VPN is just one of several end points used to access confidential network resources and critical business applications. Increasingly, organizations are deploying core business applications and sensitive resources across a greater number of web-based, cloud-based and on premise servers and are having difficulty creating consistent authentication policies for secure access to all corporate resources.

Learn more about Secure VPN

Secure Access to Citrix and VDI Solutions

The growth in the use of virtualized environments—particularly Virtual Desktop Infrastructure (VDI) solutions, such as those provided by Citrix— is challenging businesses to overcome the vulnerabilities of fixed passwords and implement a consistent authentication policy to secure access to all online corporate resources.

Learn more about Citrix and VDI Solutions

Secure Cloud Access

As enterprises transition to the cloud, they are essentially shifting their focus from controlling security with physical boundaries, to that of a virtual infrastructure. When data and applications move to the cloud, user access - by default - takes place remotely. Organizations therefore have to contend with a diffused data perimeter which induces them to implement access controls for applications both in the cloud and those within the confi nes of the data center.

Learn more about Secure Cloud Access

Transaction Security

Increasingly, online financial services are under attack. Financial services institutions and their onlinebanking customers face a rapidly escalating threat landscape in which malware attacks and data breaches are commonplace.

Learn more about Transaction Security

Secure Network Access

There is growing concern among IT leaders over the rise in corporate espionage and Advanced Persistent Threats (APTs) that originate from unauthorized local network access. Relying on simple passwords to protect employees’ computers and privileged workstations could put your organization at risk.

Learn more about Secure Network Access

view Authentication As A Service

Authentication As A Service

Cloud-based services adoption is increasing every year and more and more businesses embrace the benefits that derive from managing their data and applications in the cloud. In parallel, users access the organization data and applications from a growing number of devices, in different locations, opening the door to new threats. Authentication as-a-Service enables organizations to easily apply strong authentication onto multiple access points.

“Gartner predicts that, by 2017, more than 50% of enterprises will choose cloud-based services as the delivery option for new or refreshed user authentication implementations, up from less than 10% today.”

Find out more about the SafeNet Authentication Services offering.view Resources

Authentication Resources

Gartner Report- 2013 Magic Quadrant for User Authentication

The Magic Quadrant for User Authentication depicts Gartner's independent analysis of authentication vendors in the marketplace. Positioning within the quadrant is based on an organization's ability to execute and completeness of vision. Gartner has positioned SafeNet in the leaders quadrant.

english (pdf)

White Paper - Authentication Best Practices

A significant number of high profile security breaches have occurred recently, bringing the organizations affected to the front pages of the business press. These events have had a negative impact on the public image of these companies, and may also have a harmful effect on their business. These incidents have caused the CIOs of many companies to reevaluate their info-security strategy in general, while also placing specific focus on their user authentication and transaction security requirements.

english (pdf)

White Paper - Strong Authentication

In today’s environment, the need for organizations to enable secure remote access to corporate networks, enhance their online services, and open new opportunities for e-commerce is bringing ever-growing attention to the importance of securing user access and validating identities. In addition, the recent barrage of identity theft and corporate fraud cases has brought corporate responsibility and the protection of sensitive data to the spotlight.

english (pdf)

White Paper - The Token is Dead.Long Live the Token!

When the news broke that RSA had been breached, there was a lot of whispering in the corridors about how terrible this must have been for them. For sure, there have been plenty of breaches recently, and this highlighted that no network is impenetrable anymore.

english (pdf)

White Paper - After The Breach - Executive Overview

When organizations look back on 2011, it will be remembered as a time of rapid change regarding security best practices. Highly visible security breaches and their subsequent impact in almost every industry have changed the way companies are thinking about and implementing security measures.

english (pdf)

White Paper - Smart Phones And Tablets In The Enterprise

Whether IT organizations choose to embrace, resist, or deny them, the reality is that the increased prevalence of mobile devices in the enterprise presents a range of fundamental implications. This paper examines the paradigm shifts taking place in enterprise IT organizations today, and then focuses on the key implications the proliferation of mobile devices has for mobile authentication. The paper then uncovers some of the key strategies for making mobile authentication work effectively and securely in today's IT environments.

View All Resources Here

view Overview

Gartner, Vodafone, SafeNet Discuss Secure Access to the Cloud


Management Platforms SafeNet Authentication Manager (SAM) SafeWord 2008 SafeNet Authentication Service	One-time Password Authenticators eToken PASS eToken 3500 SafeNet Gold KT-4 and KT-5 SMS Tokens SafeNet eToken 3400	Software Authentication eToken Virtual MobilePASS Software Tokens

Certificate-based USB Authenticators SafeNet eToken 5100 SafeNet eToken 5200 eToken PRO eToken PRO Anywhere iKey 4000	Certificate-based SmartCards SafeNet eToken 4100 eToken PRO Smartcard Smart Card 650 Smart Card 400 Credit Card Tokens	Hybrids eToken NG-FLASH eToken NG-OTP iKey 1000 SafeNet eToken 3400 SafeNet eToken 7300

Security Applications eToken Network Logon SafeNet Authentication Client eToken SDK SafeNet OTP Authentication Engine