Icomm recommends a winning combination of a Sonicwall Aventail SSL VPN appliance with PinSafe two factor authentication for validated and secure remote access.

• SonicWall Aventail SSL VPN delivers the easiest secure remote access solution for mobile enterprise and has been called visionary by analyst firm Gartner
• PinSafe provides two factor authentication for validated secure access and 73% less maintenance costs than RSA tokens

SonicWall Aventail SSL VPN gives remote users access to client server applications and internal network connections using any web enabled device.

Importantly, it does not require pre-installation of specialised client software on end user computers. SonicWall Aventail SSL VPN is a simple, cheap way to give mobile workers a complete 'in-office' experience with remote access to corporate networks and data securely.

The ‘traffic’ between the end user’s Web browser and the SSL VPN device is encrypted. SonicWall’s SSL VPN provides a dedicated hardened security appliance whilst Pinsafe offers additional two factor access authentication. So, only fully approved users can access corporate data and systems remotely.

When a user wants to access a network remotely they simply click an 'Aventail' desktop icon and log-in to the SSL VPN web page supplying their everyday standard log-in details.

Then they input a Pinsafe randomised 'one-time-code' for secondary authentication and immediate access. Crucially, the 'one-time-code' is provided through two different channels for added security, for example on the desktop and via mobile phone.

As Pinsafe and Aventail are web-based the solution demands little setup cost and is scaleable, removing costly end user support and reducing the total cost of having remote workers.

There are no ongoing costs associated with token management. This is what makes the solution appropriate for large or small organisations alike looking for savings on their security and remote working budgets whilst driving out risk from remote network access.

SonicWall Aventail SSL VPN core benefits:

• Remote Access: Provides secure remote access to the most resources from the most end point device platforms
• Mobile Enterprise: The only SSL VPN solution to provide support for Microsoft® Windows Mobile PDAs and Smartphones
• Disaster Recovery: Allows employees to remain productive from anywhere, anytime—even during unexpected business-infrastructure disruptions like natural disasters, pandemics, or terrorist activities
• Wireless: Centralised secure access control for wireless networks supporting multiple device platforms
• Extranet: Extends access to partners to increase collaboration in a way that does not compromise access control and security
• Enforcing Policy: Enables IT to enforce policy across disparate points of entry, allowing granular access control for collaboration and compliance
• Network Access Control: The easiest most future-proofed remote access controller on the market

• View full list of SonicWall solutions

PINsafe token-less authentication

Rationalise and improve your remote access security and save money.

PINsafe offers a new and innovative budget busting authentication approach that is on average 73% cheaper than the cost of buying, implementing, managing and maintaining a token based system. PINsafe offers the reassurance of two factor compliance without the cost of tokens.

Implementation costs of PINsafe are often less than the renewal cost of tokens alone.

• Simple two factor token-less authentication for strong security
• Instant add and remove of end users
• No cost associated with generating individual tokens
• Reduced implementation, admin and management overheads
• Platform independent – web and mobile device
• CESG claims tested – approved by UK Government’s national technical authority for Information Assurance
• Scaleable, flexible, reliable
• A single PINsafe server can provide the authentication for all remote services, VPNs, Websites and Web Applications

PINsafe enables complete authentication of network access - strong, multi-factor, flexible, token-less security. It eradicates ongoing cost and management time associated with token based approaches.

How does it work?

PINsafe combats attacks from skimming, phishing and spyware to shoulder-surfing and key-logging, amongst others.

Each user is issued with a unique PIN and given access to randomly generated security strings delivered directly to the user’s desktop or mobile device.

When the user wants authentic access to the network, they click a desktop PINsafe icon, which generates a random security string. If required, a security string can also be sent to the user's registered mobile phone. The end user then follows their unique PIN to ‘build’ a one-time-code (OTC) from the security strong(s). This OTC is then inputted into the users log-in area – if for example, this is through a SonicWall Aventail SSL VPN, it demands a OTC alongside standard username and password.

Tell me more ...

The example above shows how a PIN of 1268 is combined with the security string to create the one-time code 2085. PINs can be from 4 digits to 10 digits long.

Security strings can be letters, numbers or a mixture of both. The user never enters their PIN providing defense against all common attacks.

PINsafe features include:

• User management facility
• User-defined PIN composition and change policies
• Self-care options
• Comprehensive logging options
• Deployed as software singularly or across multiple appliances

The advantages of not requiring a dedicated security token:

• There are no token-associated costs
• There is nothing physically to distribute for provision or collect for de-commission
• People treat their mobile phone as an essential piece of equipment; they are highly unlikely to be without it

• View more about PINsafe authentication

Go to Remote Access and Security Resource