Application of RSA dual-Factor identity authentication system solution

September 17, 2007, it is understood that China Minmetals group in recent days in order to establish efficient, high reliability, high security of the Enterprise Office automation platform, the use of RSA information security solutions.

At present, Minmetals Group of various systems password using static password, there are many security risks, including: Static password security level is too low, easy to leak; static passwords need to be regularly modified and maintained, inefficient, decentralized management responsibilities; The security threat from the access of foreign visitors to the core intranet , the identity of VPN user access is difficult to identify. Therefore, the strong identity authentication system to the Information network System protection appears very urgent and necessary. It is in this case, after many rigorous testing and comparison, Minmetals finally chose the RSA SecurID.

RSA Solutions point to RSA Authentication Management Server for all Unix/linux systems, network devices, VPN devices (JUNIPER), KVM Systems (Raritan), wireless devices (CISCO WLC) at the group headquarters (RSA Authentication Manager), users log in each system must use the RSA dynamic password token to pass. Since the deployment of the 2 RSA Authentication Management Server as a strong identity authentication system, so any 1 authentication servers fail, will not affect the user's use.

RSA Authentication Management Server and SecurID solution is a dual-factor user authentication system. Through the joint use of Authentication Management Server and RSA Authentication Agent software, SecurID authentication equipment (also known as token) provides powerful two-factor authentication, which is automatically updated every 60 seconds, in view of this dynamic, user's electronic identity is difficult to imitate, steal or destroy. Therefore, the system can help minmetals provide a more reliable certification system for its employees based on the user's known password or PIN and the token that the user holds.

Minmetals Group Information Systems Department project leader said: "RSA dual-Factor strong identity authentication system implementation is relatively mature and fast, at the same time the system reliability, stability and scalability are very strong, day-to-day operation and maintenance of the workload is very low." ”