It is generally accepted that authentication via user name and password is not a very secure mechanism for user authencation. Many companies therefore start to use 2-factor authentication based on security tokens like Smart Cards or special USB tokens. Not only does the use of token & PIN improve the security. The use of such authentication also often enables the introduction of single sign-on, digital signatures and other processes that enhance productivity.
Security tokens have a life cycle that needs to be managed, if companies want to introduce secure, reliable and auditable processes. For example, Smart Cards need to get issued and eventually suspended or invalidated due to theft, loss or damage. In addition, spare cards might to be issued when needed. Finally, cards are withdrawn and destroyed. Therefore, many companies are looking for a token management solution. It needs to seamlessly integrate into their existing IT environment and it should implement management functions independent of specific tokens - to avoid vendor lock-in. Moreover, end users require some support, e.g. due to a forgotten PIN or to the need for additional credentials (certificates and keys) on the card.
This white paper provides an overview of the requirements on a best-in-class token management solution and explains how SECUDE trustmanager helps addressing the challenges of token management in an efficient and secure way. |
