Click here to load reader
Upload
cicciciccio
View
215
Download
0
Embed Size (px)
Citation preview
8/11/2019 Sb Internet Scale Identity Assurance an Urgent Universal Need en Xg
http://slidepdf.com/reader/full/sb-internet-scale-identity-assurance-an-urgent-universal-need-en-xg 1/4
SOLUTIONS BRIEF
Universal Identity
Services offersorganizations multipleoptions for creatingnew users and verifyingtheir identities.
IDENTITY ASSURANCE: THE NEEDFOR SECURE AUTHENTICATIONUniversal Identity Services
Identity assurance is not as simple as it once was, and in fact, presents a serious dilemma: the
expanding role of remote users coupled with increasingly sophisticated methods of identity fraudmean greater risks to the enterprise. Access to valuable corporate assets and critical data can no
longer be confidently granted based on simple user name and passwords as they just don’t offer
a high level of protection. Add to that the complexities of security compliance requirements,
corporate governance and evolving industry mandates—and your organization faces a daunting
task to effectively manage digital identities.
Now, imagine a solution that would simplify identity management by letting you quickly and
confidently extend access to your employees, partners and customers. Verizon is helping make
this vision a reality—controlling cost and complexity while simultaneously verifying that the right
people are granted access to your systems and resources. Verizon’s Universal Identity Services are
cloud-based solutions that strengthen your data protection strategies, enable secure business
transactions, and help address compliance.
Universal Identity Services is delivered as a service, so there’s no need to invest in expensivehardware or face the complex challenge of engaging multiple teams to install, support, manage and
maintain applications. Services that may currently take your organization weeks to perform can be
handled in minutes—without paper-based processes or manual updates for multiple applications.
And because Universal Identity Services is highly scalable, you can easily expand your identity
management capabilities as you grow, paying only for the level of services you need.
THE UNIVERSAL IDENTITY SERVICES IDENTITY ECOSYSTEM
Universal Identity Services provides organizations with a complete identity ecosystem. First, the
solution vets the identity of employees, partners and customers according to strict NIST standards
and lets them choose identity credentials by selecting from a broad array of methods for strong
authentication. For example, when users want to access your systems, they enter their Universal
Identity Services ID and a one-time passcode is sent to the device of their choice. Once they are
either authenticated or denied access, Universal Identity Services logs the activity for alerting,
reporting, and audit-readiness. The solution can also enable users to sign digital documents to meet
a wide variety of enterprise, operational, and compliance needs.
AUTOMATED IDENTITY PROOFING
Universal Identity Services offers organizations multiple options for creating new users and verifying
their identities. Enterprises can upload existing user names, passwords, and identity proofing data
or users can create their own identity credentials using the solution’s online registration process.
When a new user creates an account, they are asked a series of knowledge-based questions and can
select their preferred methods of second-factor authentication. If the user fails the online proofing
process, in-person options are available to validate identity.
8/11/2019 Sb Internet Scale Identity Assurance an Urgent Universal Need en Xg
http://slidepdf.com/reader/full/sb-internet-scale-identity-assurance-an-urgent-universal-need-en-xg 2/4
Once the identity proofing process is complete, an online portal lets users update their information,
reset passwords and PINs or register new authentication credentials such as a new e-mail or new
mobile device. Key features include:
• Meets requirements for NIST Level 3 identity proofing
• Automated online knowledge-based assessments
•
Supports self-service notary via secure e-fax and in-person Trusted Agent identity vetting• Easily integrates with existing identity systems to leverage data and account directories
• Customizable enrollment screens and workflows
• Administrative interface for registration workflows and form factor configuration
• Administrative dashboard for tracking service use
FLEXIBLE CREDENTIAL PROVISIONING
Universal Identity Services makes multi-factor authentication convenient for your users by allowing
them to use devices they already have as identity credentials, such as mobile phones, tablets, or
computers. Users can choose from several form factors including email, interactive voice response
(IVR), text messaging or soft tokens. Enterprises can limit their users to specific second-factor
devices or can simply enable all Universal Identity Services options. We support phone calls, text
messaging, and IVR around the globe. The solution can automatically send a one-time passcode tothe user-selected primary device. Users with the Universal Identity Services mobile application on
their smartphone or tablet can also have the one-time passcode sent automatically by their device
instead of needing to enter the code manually. Key features include:
• Simple online process for credential provisioning up to NIST Level 3
• Multiple assurance-level credentials for authentication
• Supports numerous authentication approaches, including: username/password, one-time
passcodes sent to a mobile device using text messages (SMS) or IVR, one-time passwords sent
to landline phones using IVR, OATH software tokens for Microsoft® Windows® and Apple Mac,
PINs or passwords with the mobile application, and more. Using the soft tokens as part of the
Universal Identity Services mobile application, or on a laptop or desktop, users can auto-accept
and the solution automatically sends the one-time passcode to the relying party application.
•
Enables user preferences for OTP delivery• International phone support includes phone calls, SMS, and IVR from over 200 countries and places
STRONG AUTHENTICATION
Multi-factor authentication can help organizations drastically reduce the incidence of identity
theft and fraud as users not only have to provide something they know (user name and password),
but also something they have (credentials such as mobile phone, soft token or mobile application).
Universal Identity Services provides a broad array of second-factor options for how enterprises can
authenticate their users and applies risk-based analysis techniques for an added layer of protection.
And as an added benefit, the complexity of implementing an effective authentication solution is
shifted to Verizon, while still allowing the enterprise to retain control of access management. Key
features include:
• Managed authentication services are compliant with requirements for NIST Level 3
• IP malice testing to improve the accuracy of authentications
• Timeout and lockout policies help limit risk
• Supports SAML 1.x-2.0, Juniper Networks, Citrix, or Cisco Edge AnyConnect VPN, and others
• Help Desk support for Tiers 1-3, 7x24, or customizable support (e.g., Tier 3 only)
8/11/2019 Sb Internet Scale Identity Assurance an Urgent Universal Need en Xg
http://slidepdf.com/reader/full/sb-internet-scale-identity-assurance-an-urgent-universal-need-en-xg 3/4
WHY VERIZON?
Within our Security practice:
• We delivered over 5,500 security
consulting engagements to
businesses around the globe in
the last three years, enabling usto transfer our knowledge of
best practices that have been
proven to work
• We analyzed data breaches
that involved over 1.1 billion
compromised records in the
past nine years
• We are a qualified HITRUST CSF
Assessor and member of the
HITRUST Leadership Roundtable
• We have 500+ dedicated,
experienced security professionals
• We are a BSI ManagementSystems Associate Consultant
for ISO 27001 and BS 25999
• We are certified by the PCI
Security Standards Council
as an ASV, QSA, and PA-QSA
• We are the first identity
provider to earn ICAM Level 3
certification—enabling us to
issue digital credentials to
businesses and government
in accordance with a set of
predefined standards
• We are a recognized leader insecurity services with a vast
global IP network
UNIVERSAL IDENTITY SERVICES MOBILE APPLICATION AND ID MESSAGE CENTER
Using the mobile application and the ID Message Center, users can access and approve
transactions anytime, virtually anywhere. The mobile application provides an OATH soft token
to deliver one-time passcodes to authenticate transactions. The application also includes the
ID Message Center, where users must provide a PIN to gain access. After the solution validates
both the PIN and the soft token, users can view their queue of transactions. Depending on the
transaction, users may be asked to provide a PIN or password to approve or reject the transaction.
You, as the relying party, decide on the level of authentication required for each transaction. Key
features include:
• Available on BlackBerry (touch and non-touch), Google Android, Microsoft® Windows® Phone,
and Apple iOS devices (iPhone, iPad, and iPod Touch)
• Easy access to past (approved and rejected) transactions and pending transactions
• Web services toolkit enables the online tracking of pending, accepted, rejected, and expired
authentication transactions
DIGITAL SIGNATURE SERVICES
Universal Identity Services includes digital signature services that meet a variety of enterprise
needs. A digital signature on a document—prescription, W-9 form, or internal corporate document—
is legally recognizable. Users can apply digital signatures to essential corporate documents, suchas employment, financial, or other materials. Digital signature services are available for XML and
Adobe PDF documents.
EXPANDING TO MULTIPLE RELYING PARTIES
Customers are typically configured as a “stand-alone” Relying Party (RP) with which a specific
collection of users would authenticate using Universal Identity Services. Customers can also
be configured for Relying Party Associations as part of their onboarding. The association of a
primary Relying Party to their vendors, contractors or partners allows users employed by the
associated organizations to authenticate into any of the RPs configured in the association with
a single Universal Identity Services identity, regardless of their relationship with a specific
organization. For the Primary RP, who manages the relationship with partner RPs, this feature
provides advantages of authentications for non-employees, and reports for authentication
activities both inside and external to their environment. For the end-users, this feature provides
advantages of a single Universal Identity Services identity for multiple relying parties, ability to use
second factors for authentication credentials with multiple relying parties, an online registration
process, and an online process to increase their Level of Assurance for identity proofing. In addition
to the Relying Party Associations, each RP can enable specific attributes for users.
ENTERPRISE DASHBOARD
Enterprise administrators with appropriate privileges can use the reporting dashboard to view
information that is specific to their own environment, users and users’ activities. Service summaries,
reports and alerts can be viewed on the dashboard.
8/11/2019 Sb Internet Scale Identity Assurance an Urgent Universal Need en Xg
http://slidepdf.com/reader/full/sb-internet-scale-identity-assurance-an-urgent-universal-need-en-xg 4/4
Verizon is a global leader in driving better business outcomes for mid-sized and large enterprises and government agenciesVerizon combines integrated communications and IT solutions, professional services expertise with high IQ global IP andmobility networks to enable businesses to securely access information, share content and communicate. Verizon is rapidlytransforming to a cloud-based ‘everything-as-a-service’ delivery model that will put the power of enterprise-grade solutionswithin the reach of every business. verizonenterprise.com
© 2013 Verizon. All Rights Reserved. The Verizon name and logo and all other names, logos, and slogans identifying Verizon’s products and services are trademarks an
service marks or registered trademarks and service marks of Verizon Trademark Services LLC or its affiliates in the United States and/or other countries. All othetrademarks and service marks are the property of their respective owners. SB14932 6/13
UNIVERSAL IDENTITY SERVICES: SIMPLE, SECURE, AND COST-EFFECTIVE
Verizon’s Universal Identity Services helps organizations address compliance and reduce the
risk of identity fraud by vetting and authenticating employees, customers and partners at high
levels of assurance. The solution provides:
• On-demand identity-as-a-service, without the complexity and expense of on-premises
hardware and software
• Strong authentication solution from Verizon, the first identity provider to earn Identity,
Credential and Access Management (ICAM) Level 3 certification
• Cloud-based identity management that helps reduce the risk of identity fraud by providing
real-time transactional identity assurance
• NIST Level 3 compliant ID proofing and authentication services
• Rapid-deployment, fast identity proofing and credential issuance
• Positive user experience for credential provisioning and transactional authentication
• Standard authentication experience across all applications
LEARN MORE
To find out more about Verizon Security Solutions, contact your Verizon account manager or visit
verizon.com. Verizon enterprise identity solutions are available in the U.S. and Europe.