|
Unique advantages of using this option with Sphinx
|
 Can be used, for convenience, without a PIN
Since end-users always have their fingerprint, there's no PIN to potentially forget.
When used with a PIN, achieves three-factor authentication
This is an easy way to achieve three factor authencation, since the end-user is prompted to verify fingerprint, then enter PIN, in a seamless progression.
Can be used with any card choice
When used with a smart card, authenticates fingerprint against image stored on card. When used with an RFID card, authenticates fingerprint against image stored on secure server. With both methods, Sphinx adheres to stringent security protocols and unencrypts the fingerprint image only as required for authentication, to ensure that the image is kept secret.
|
|
Added logon security achieved with this option
|
Stronger.
Two (or three) -factor authentication
Using this card with the Sphinx software to logon to computers, websites and applications protects these logon processes with two-factor authentication. Cardholder must present card to reader, verify fingerprint, and enter PIN (if required), in order to access his Sphinx information and execute logon. Two-factor authentication is relied on throughout the security industry for its effectiveness at protecting information. Three-factor authentication can be used to provide additional security for any installation, or to protect especially sensitive information.
Enables use of strong passwords
End-users are enabled to use strong, complex passwords that provide effective protection, because Sphinx stores them securely so that end-users don’t need to remember them. Password information is entered into logon processes transparently, directly from the Sphinx software into the logon process, so that it cannot be observed or recorded.
|
|
Data portability with this option
|
Dependent upon card type chosen.
|
|
PKI available
|
Dependent upon card type chosen.
|
|
Impact on network setup
|
Dependent upon card type chosen.
|
|
Impact on facility access card infrastructure
|
Dependent upon card type chosen.
|
|
Administrative tasks
|
For Sphinx Enterprise version:
�Administrator can control the Sphinx system as little or as much as he wants.
- Administrator installs Sphinx Logon Manager software on end-user computers, and installs Sphinx CardMaker software on a secure server computer and specifies three server settings.
- Administrator can leave pre-configured default settings as is, or can change the default settings of the full-featured Sphinx CardMaker software to suit the security requirements of the installation.
- End-users use their cards to self-enroll with the Sphinx software, or administrator issues Sphinx rights to end-user cards using the Sphinx CardMaker software.
- Upon first use, end-user self enrolls two fingerprints, then verifies against either of the fingerprints to logon and access data.
- End-users refer to the Sphinx support site for QuickStart guide, manuals, and support information, which ensure that end-users have all the information that they need to work easily and optimally with Sphinx.
- If end-user loses card, he can use a new card to "re-enroll" with the Sphinx server using a self-selected security code, or administrator can re-issue Sphinx rights to new card using Sphinx CardMaker software.
|
|
Relative overall cost
|
Medium.
Compared to other Sphinx solutions:
Cost of fingerprint reader adds to the cost of the solution.
Compared to other logon solutions:
Mid-range one-time cost per seat can be worthwhile for companies requireing this level of convenience or security. Can pay for itself through decreased risk of data loss. Definite savings in comparison to other solutions in terms of ongoing maintenance of the solution, for example, for solutions that require integration of logon applications or have annual fees.
|
|
System requirements
|
Operating system for Sphinx Logon Manager for end-user computers:
Windows NT4, 2000, or XP.
Operating system for Sphinx CardMaker for administrator computer:
Windows XP or 2003 Server (Sphinx Enterprise version only).
Browser:
Internet Explorer 5.5+ or FireFox 2.0.
|
