With the deadline for the CJIS Mandate nearing, I thought it would be a great time to discuss a highly capable strong authentication solution: Authasas. The software easily integrates with an ever-widening variety of card-readers and biometric devices. This particular solution is ideal for organizations that currently have physical access already in place, as the proximity cards can most likely be re-used for logical access after its implementation.
HID’s NaviGO software allows for strong, two-factor authentication. This software functions with both proximity and crescendo cards. However, did you know that NaviGO also provides Single Sign-On capabilities? In HID’s terms, the software allows administrators to secure applications.
Passwords and security risks are a major concern for a lot of growing businesses today, especially those who have or hold access to sensitive information such as police stations, court houses, hospitals and clinics. Many of these organizations use some sort of directory system like eDirectory or Active Directory to maintain their users’ authentication and authorization into the internal network and various databases. Each organization also maintains the password policies for their users (i.e. Expires every 45 days, Must be 7 characters, Must have one number, etc…). With a growing number of applications follows an increased number of passwords, which poses difficulties in managing.
The primary push for acquiring strong, two-factor authentication is to satisfy the CJIS Mandate. Many state and local police departments require access to the NCIC (National Crime Information Center). In order to retain access to this information, all law enforcement agencies must comply with the CJIS Mandate’s demand for strong, two-factor authentication. The cut-off for this date is at the end 2012, meaning that all law enforcement departments who have not satisfied the requirements of the CJIS Mandate, but wish to retain access to the NCIC, shall be fined.
Local, state, federal law enforcement and criminal justice agencies have started to comply with the recent mandatory authentication policy requiring advanced authentication when accessing the Criminal Justice Information System (CJIS) database. This system provides agencies with access to information such as fingerprint records, criminal histories, and sex offender registrations to name a few. The advanced authentication that is being put into place requires users to provide two forms of identification, physical and “something you know”, in order to access the highly sensitive information stored in the database. Physical identification would be when a contactless smart card is placed on a reader, and “something you know” would be when the user has to input a password or PIN number.
Recent Comments