The idea of having an 8+ character password as the only measure of defense between a hacker and confidential information on your organization’s VPN should be worrisome.
KANATA, Ontario (PRWEB) July 11, 2018
Cyphercor is a cybersecurity company that is improving how organizations secure employee remote access and company assets. They’ve developed a multi-factor solution which combines enterprise grade security and best in class user experience into one comprehensive package. Cyphercor deployed their LoginTC solution on the CENGN Testbed to validate their new adaptive authentication functionality with Cisco’s ASA series VPN to add another layer of security to their solution’s resume.
SINGLE-FACTOR AUTHENTICATION WORRIES
The idea of having an 8+ character password as the only measure of defense between a hacker and confidential information on your organization’s VPN should be worrisome. The need for greater security measures around VPN access has led enterprises to search for more dynamic security solutions. The struggle lies in the fact that these security solutions must be usable, intuitive, and efficient for the end user. Organizations want to ensure their VPN is secure and is only accessed by authorized users, but they don’t want employee complications when attempting to log on. Through LoginTC, Cyphercor aims to address the demand for an additional layer of user-friendly security.
LOGINTC: SIMPLE YET SECURE
Cyphercor’s LoginTC starts by having users download the application, which is available for devices on iOS, Android, and BlackBerry. LoginTC integrates with existing first factor deployments such as Active Directory, LDAP, and RADIUS. A second factor authentication token is created when the user enters the administrator-issued tokens in the LoginTC app. When a user tries to log on to the VPN, the mobile app receives a push notification showing the IP address and geographic location of the access request. Users can then choose to accept or deny access to the VPN. If the user accepts the request from the push notification, access is then granted to the VPN. LoginTC has created an adaptive authentication process that takes several variables such as the behaviour and context of the login into consideration. If these variables seem out of the ordinary in comparison to past login factors or pass a pre-determined level of risk, LoginTC will prompt the user for additional information before granting access to the VPN or deny the request altogether. Administrators are also notified when a request is out of the ordinary.
INTEGRATING LOGINTC WITH CISCO ASA SERIES VPN
The purpose of Cyphercor coming to CENGN was to successfully validate the integration of LoginTC’s adaptive authentication functionality with Cisco’s ASA series VPN (ASAv). Within a project slice on the CENGN Testbed, a Cyphercor user entered their username and password to access the VPN. Cisco’s ASAv sent an authentication request to the LoginTC connector, which allowed the login credentials to be verified with the organization’s first-factor directory (LDAP, Active Directory, or RADIUS). Once verified, an authentication request was sent to LoginTC cloud services and a push notification popped up on the user’s mobile device or desktop. LoginTC’s connector stayed pending until the user responded to the authentication request or the timeout was reached. The user chose to accept or deny the request and a protocol relayed the decision back to the VPN where the user gained access to the VPN or was rejected.
Several tests were run to validate LoginTC’s adaptive authentication functionality. LoginTC’s adaptive authentication mode was validated for client-based, clientless access, and a custom user interface. Client-based is when the VPN that is accessed through a software application installed on a desktop, clientless is a URL that redirects the user to the VPN login page. A custom user interface allows the choice of different authentication options for the user. Different adaptive authentication variables such as time of day, frequency, time to complete authentication, and IP addresses were used in the testing to enable additional security measures.
Having their own virtual environment on the CENGN Testbed allowed Cyphercor to deploy different configurations and test upcoming innovative features of their product, which will accelerate their product development cycle. CENGN was able to customize the environment to fit Cyphercor’s needs and replicate the company’s average customer environment. This CENGN project has proven the functionality of Cyphercor’s product, LoginTC, allowing them to widen their market with confidence to any potential customers using Cisco’s ASA series VPN.
For detailed instructions on how to set up your Cisco VPN with LoginTC two-factor authentication: https://www.logintc.com/docs/connectors/cisco-asa.html
About Cyphercor Inc.
Cyphercor offers a cybersecurity solution for businesses of all size to ensure only authorized personnel have access to their VPN, networks and online portals. Their flagship product is titled LoginTC and turns phones, tablets, or desktops into a secure token safeguarded from potential intruders. The company is a trusted partner to thousands globally, including The Government of Canada, Crown Corporations, Hydro Electric Utilities, Financial Institutions, Manufacturing and more. Founded and headquartered in Ottawa, Ontario, Canada.
CENGN - Centre of Excellence in Next Generation Networks, is a Canadian consortium of large
multinational companies, academic institutions, and research leaders that work with small and
medium Canadian companies to accelerate the commercialization of next generation
communications solutions. CENGN is a not-for-profit company funded by the Canadian
Government’s Networks of Centres of Excellence (NCE) through the Centres of Excellence for
Commercialization and Research (CECR) Program and the Ontario Government’s Next
Generation Network Program (NGNP), as well as its industry members. The organization’s
members include: Bell Canada, Cisco, EXFO, Huawei, Invest Ottawa, Juniper Networks, Mitel,
Nokia, Ribbon Communications, Rogers, TELUS and Wind River. CENGN’s mission is to
create a viable Canadian ecosystem that facilitates commercialization in the next generation of
networks by providing validation services to small and medium enterprises (SMEs), industry,
academia, and government.
CENGN’s internationally recognized multi-vendor infrastructure is built on open source as well
as commercially available software and hardware. CENGN’s technology areas of focus are: Data
Centre and Cloud Infrastructure, Internet of Things (IoT), Network Function Virtualization
(NFV), and Software Defined Networks (SDN), among others. The organization is at the leading
edge in the development and deployment of wired and wireless technologies that are utilized by
applications such as cloud, wireless 5G, autonomous vehicles, broadband internet and