Our clients are increasingly reliant on Web based applications and data, making these available to their staff, their partners and the public.
The demand for location independent access is similarly increasing, whether via Internet enabled access or connections to local networks.
As both these trends continue so does the risk that the increasingly sensitive data, whether personal data protected under European law or commercially sensitive data, may be accessed by unauthorised individuals. For many of these scenarios the weak point is the login itself – a single factor password is often not sufficient protection. In other cases there are underlying weaknesses in your code that allow hackers to use exploits, such as passing SQL commands within the login parameters to access your systems
We help organisations ensure that people have access to only the information they are entitled to, introducing stronger security measures where needed and providing a full security support service. Our customers can be confident that they have managed the risks appropriately and that this will be maintained, whatever line-of-business or day-to-day challenges they are faced with.
What is Web Secure?
Web Secure is a group of services designed to increase your confidence that your security needs associated with your online presence and Web accessible applications are met, while minimising the effort associated with security management and administration.
We provide a comprehensive technical and operational service releasing you to concentrate on your line of business, while we take care of managing the systems, processes and people that your security relies on.
Web Secure Personal Authentication
This is our core service for clients wishing to improve the security of their application login process.
At the heart of this approach to Web security is our partnership with RSA, the leading providers of authentication services and products. We provide a fully managed, resilient RSA SecurID solution, running on our servers in our hardened hosting environment.
Users wishing to access your systems are authenticated via a multifactor (UserID, password or hard-token) login before being allowed access to your systems.
It includes:
- RSA SecurID token management for two-factor authentication.
- Dedicated or shared-server Ace Servers with integration to your applications.
- User management, including allocation and replacement of hard tokens, helpdesk support and user updates.
The shared server option provides reliable and resilient authentication with no single point of failure through the use of multiple servers etc. The service is fully managed, so you don’t have to invest your staff’s time in getting to grips with the technology or its support.
We are able to substantially reduce the usual running costs of this type of service, offering savings of around 40% or greater compared with dedicated solutions.
Furthermore our support services team takes care of all aspects of user management, relieving your internal team of the need to issue, maintain and troubleshoot UserID’s, passwords and tokens.
Web Secure System Authentication
In many cases the requirement is simply to create a secure connection between the client's network and their application running on our hosting platform. OF course we would anticipate that all data is secured using SSL, but for the more sensitive information this may not be enough.
Web Secure System Authentication is a service that installs a dedicated VPN between the client firewall and our firewalls, creating a secure, dedicated channel betweeen the two systems. This is especially appropriate where a site does not have NHSnet/N3 access but needs to access patient specific information securely.
Web Secure System Authentication can often be a simple to put in place, provided the client firewalls support VPN. Call us to discuss your needs.