You have employees all over the world. You want them to walk through your buildings with a certain freedom. You want them to have access to your corporate intranet so they can benefit from the knowledge contained within it. What you don't want is a security solution that hinders productivity. Today enterprises want to reduce their identity administration costs, improve end user productivity, satisfy security and privacy policies to reduce risk, and add flexibility to strategic IT planning.

Identity administration costs are cut by reducing the number of separately administered authentication credentials. DeXa.Badge permits a single enrollment process creating a single identity used by numerous applications. Combining physical and logical enrollment is an especially powerful cost reduction lever, because the initial visit to "the badge office" is institutionalized. Face-to-face identification, presentation of hardcopy credentials, collection of biometrics, and secure activation and delivery of a security token can all be accomplished in a single streamlined process. Once an identity and credentials are established, DeXa.Badge automatically-and quickly-propagates the identity and role-based authorizations to a broad range of enterprise applications, greatly reducing errors and corrective actions.

The end user sees a direct benefit from unified administration: fewer passwords, fewer accounts, fewer security credentials and authorizations to request, and fewer logins. DeXa.Badge enables automatic password management and single sign on across all frequently used applications encompassing multiple platforms, Windows, Unix, Mainframe and the Web.

Identity management

Security at the desktop level is as important as it is at the enterprise level. With a single sign-on architecture, enterprise password management, provisioning and a multi-factor authentication process, identity management with DeXa Badge makes life easier for the user while keeping your data safe.

DeXa.Badge Secure Identity Management Solutions

DeXa.Badge Card Management System (CMS)
DeXa.Badge CMS lets enterprises cost-effectively deploy and manage both smart cards and PKI credentials throughout their life cycle for large corporate environments. Offering Smart Card-based physical and logical security, advanced cryptographic and personalization capabilities, as well as readers and development tools, DeXa.Badge CMS provides two-factor and biometric authentication, network and information security functions and the secure management and storage of digital credentials. The Admin Portal provides robust controls for managing both user credentials and smart cards, while the User Portal supports a secure and convenient method for enterprise user to perform self-service smart card maintenance. Additionally, DeXa.Badge CMS supports distributed, role-based administration and integration with leading directories and physical access technologies. All SmartCard data is securely stored, tracked and managed throughout the entire card lifecycle.

DeXa.Badge Secure Provisioning Director (SPD)
Provisioning services and systems within an organization supplies end users with necessary IT services to perform their job function including, telephone service, network access, web access, physical access, email, remote dial-up, VPN, as well as access to applications e.g., CRM and ERP. DeXa.Badge SPD integrates provisioning with identity management, streamlining the entire IT business flow. It provides a single centralized way to manage business change events for individuals or groups of users within an enterprise. Whether an employee has just been hired, is being transferred to a new location, is promoted, becomes part of a new task force or leaves the company, all elements of the employee’s identity and IT services are easily and securely managed and audited.

Through its flexible and scalable architecture, DeXa.Badge SPD can automatically propagate identities and authorizations to a broad range of enterprise applications, eliminating the need for separate enrollment processes, greatly reducing delays, and minimizing errors. DeXa.Badge SPD reduces the cost of provisioning and identity management, enhances security through centralized resource management and audit, and increases user satisfaction through decreased resource acquisition times and optional self-service access.

Capabilities

Benefits

Access Control

While the health-care and the financial sectors have long required the use of access control systems to satisfy the rules of their governing regulatory agencies, access control is becoming more and more important in the general corporate world. When you roll in office relocation, global mergers, and employee turnover, the costs of maintenance and upgrade of an access management system can become financially oppressive. DeXa.Badge provides an end-to-end solution for access control systems, allowing fast and easy deployment and maintenance at a competitive cost. By layering your system with additional authentication mechanisms (including biometrics) even your most sensitive building areas, information and transactions can be protected.

Schlumberger also won Best Biometric Solution for its DeXa.Badge* SAS at the Secure Computing (SC) Magazine Awards in April 2003.

DeXa.Badge Integrated Enterprise Access Solutions

DeXa.Badge Enterprise Password Manager (EPM)
DeXa.Badge EPM provides automatic and transparent single sign-on capabilities for secure physical and logical access using proven smart card security and credential portability. With DeXa.Badge EPM an organization can apply and automatically enforce a strong password policy for each application, using password policies that remain unique to each application. DeXa.Badge EPM supports centralized administrative control of applications leveraging existing network infrastructure, prevents vulnerability from a single point of attack, and can positively identify transactions conducted by an end-user. In short, DeXa.Badge Enterprise Password Manager remembers strong passwords to prevent people from writing them down enhancing and enforcing enterprise security.

DeXa.Badge One Time Password (OTP)
DeXa.Badge One-Time Password (OTP) is a flexible two-factor authentication system based on something you know (a password or PIN), and something you have (a Smart Card) - providing a much more reliable level of user authentication than reusable password. The DeXa.Badge OTP solution allows the additional security of two-factor authentication to be deployed at a low cost to the enterprise by utilizing standard components such as Web Servers and RADIUS servers for authentication. It is easy to deploy since there are no client side components other than a standard Web Browser required. DeXa.Badge OTP provides a standard authentication interface, which makes it compatible with remote access servers, wireless access points, Web servers, firewalls and VPNs.

DeXa.Badge Strong Authentication System (SAS)
DeXa.Badge SAS is a flexible credential management system enabling multiple authentication mechanisms (biometrics in addition to more conventional methods) applied via appropriate authentication policies. Using an extensible architecture, DeXa.Badge SAS supports integration and deployment of numerous biometric technologies for multi-factor authentication, including Match On Card (MOC) technology, performing the critical biometric matching in the closed card environment, where the template is securely stored. Security is improved since the Biometric comparison is performed on the smart card rather than on a server. DeXa.Badge SAS allows integration of logical and physical access with one stop enrollment in the card issuance process as well as email signing and encryption using biometrics to unlock the digital certificate from Smart Card.

DeXa.Badge Enterprise Wireless Authenticator (EWA)
DeXa.Badge EWA enforces strong authentication for wireless network access, requiring clients to authenticate to specific Wireless Access Points before allowing access into the backend network. DeXa.Badge EWA enhances security over existing Wireless options. Users are unable to get access to the network until authentication is successful; the smart card securely stores authentication credentials; and DeXa.Badge EWA supports two- or three-factor authentication capabilities including digital certificates and one-time password. DeXa.Badge EWA has a flexible and extensible architecture as well as supporting existing industry standards, leveraging capabilities built in to standard network devices.

DeXa.Badge Thin Client Authentication (TCA)
DeXa.Badge TCA provides secure smart card access via thin client Terminals, allowing employees to access critical applications from anywhere at anytime. DeXa.Badge TCA supports Windows platforms, including WinCE, as well as Unix based thin clients. Working with chained servers, DeXa.Badge TCA supports any smart card-enabled applications over Citrix Metaframe, such as PKI, secure Web access or Email security.

Capabilities

Benefits