WebIdentity
Features | Applications | Technical
WebIdentity is the system based on the hardware key that, once inserted in the USB port of the PC, enables recognizing the user of a Web-based application univocally and establishing protected and encrypted transactions on Internet, Intranet and Extranet networks.
WebIdentity solves any management and replicability problems of user-name and password-based systems simply and functionally.
The unique authentication and the security of the transactions are based on the features of the device, which has its own microprocessor and has been specially implemented for security functions, and on private key encryption algorithms which are time variable.
Thanks to the standard interface and USB plug&play and to a set of ActiveX components and Client and Server Plug-ins, WebIdentity has proved to be the best solution, not only in terms of security but also from the point of view of simplicity and seamlessness. The features of the token make it the ideal tool for saving passwords, electronic certificates, electronic shopping bag features and any other information relating to the user or to the service being used which could be considered worthy of saving inside the device.
How it works
WebIdentity is the ultimate solution to the problems of controlled distribution of information over the Internet.
Whoever needs to protect and check access to web pages, services, databases or more generally, specific areas of an Internet site, will only have to give authorized users of the Internet service a properly initialized WebIdentity token.
Thereafter, the user will simply plug WebIdentity into the USB (Universal Serial Bus) port of the computer without going through any installation procedures at all.
The Server application will take care of setting up secure communications with the token in order to authenticate the user.User identification is carried out on the basis of information resident in the device and in combination optionally with the user supplied password (two factor authentication).
When the Client has been identified and the user authorization checked, WebIdentity sends the custom, private information to the user, encrypting the content with the Blowfish 256 bit algorithm and the time variable key which is linked to the secret value in token.
The information can be either HTML pages, database information with web interfaces, forms, download areas etc. The transaction of this information over the web is encrypted both from the server to the Client and vice versa.
WebIdentity is supplied with a SDK (Software Development Kit) which lets you integrate with ActiveX Server components and ActiveX Client Plug-Ins which can be integrated during the setting up of protected sites and downloaded and executed automatically and seamlessly in the Client by the user when he first connects to the site.
top