23 April, 2015
category: Corporate, Digital ID, Financial, Health, Smart Cards
Vegas hotel goes with BLE for guest access
Opening hotel rooms with smartphones became reality in Las Vegas. The Cromwell Las Vegas decided to use the combination of the LEGIC Connect trusted service, Kaba Mobile Access Solutions and Bluetooth Low Energy, enabling the hotel to send keys onto smartphones with the touch of a button.
The Cromwell Las Vegas, operated by Caesars Entertainment, is now one of the first hotels to enable guests to open rooms with mobile phones. LEGIC provides its trusted service through an existing Kaba Saflok room key management solution. LEGIC Connect ensures that the complexity of deploying electronic room keys to mobile phones stays in the background. The established processes at the front desk of the hotel remain unchanged.
The LEGIC Connect service is operated in a highly secure data center, prepared to support multiple technology vendors and any given number of hotel properties. LEGIC further provides the software development kit for hotel-specific smartphone apps as well as the integrated end-to-end security system, which ranges from mobile guest registration through “over the air key deployments” down to the security anchor in the hotel lock.
SAFE-BioPharma announces consulting service
SAFE-BioPharma Association announced creation of SBP Digital Trust Consulting, a resource of identity and access management policy and technical experts for life science and health care companies seeking to develop improved cyber security strategies.
SAFE-BioPharma is the non-profit coalition responsible for the on-going development and implementation of the global SAFE-BioPharma digital identity and signature standard.
Personnel available through SBP Digital Trust Consulting work with policy, technical, security, and compliance staffs to assess and develop IAM strategies, build IAM system requirements, develop required certificate and credential policies and practice statements, and to assist in required procurement actions. Unaffiliated with vendors or other commercial suppliers, they are committed to objectivity in their recommendations.
SBP Digital Trust Consulting also provides expert counseling on identity and access management considerations in the areas of health care and biopharmaceutical business process improvement, regulatory compliance, and communications outreach.
Specific capabilities include:
- IAM policy and compliance – knowledge and proven application of IAM life cycle policy requirements and developing certificate/credential policies and practice statements, token management for both PKI certificates and non-PKI credentials, and certificate and credential life cycle management
- IAM system technical architecture that complies with applicable national and international regulations
- IAM system security requirements (NIST, ISO, ETSI) and implementation
- IAM and privacy/confidentiality legal issues
- Biopharmaceutical-specific business processes expertise
- Biopharmaceutical industry regulatory expertise
- Public relations and communications targeting IAM and cybersecurity issues
GMO GlobalSign partners for mobile authentication
GMO GlobalSign, a provider of identity services for online transactions and the security division of Tokyo-based GMO Internet Group, announced it is working with AirWatch by VMware to enable enterprises to issue and manage GlobalSign digital certificates for mobile authentication directly from the AirWatch Enterprise Mobility Management (EMM) platform.
The combination of the AirWatch EMM platform with GlobalSign’s cloud-based Managed PKI solution provides IT teams with a streamlined approach to managing BYOD and employee access to corporate networks with provisioning and management of digital certificates on mobile devices.
GlobalSign’s Managed PKI implementation enables certificates to be used on the most in-demand mobile authentication needs, including authenticating access to email, Wi-Fi networks and VPNs. Complementing this are additional AirWatch EMM features that simplify life cycle management, including widespread mobile certificate issuance, management, renewal or revocation of certificates, either individually or in bulk.
New push authentication from Entrust Datacard
Entrust Datacard announced the introduction of a new push authentication capability in its Entrust IdentityGuard Mobile platform that enables authorized users to more easily and securely access VPNs and websites with their mobile phones or tablets.
Instead of introducing another hardware token, complex passwords or series of security questions, the new IdentityGuard Mobile push authentication sets up a secure session using a mobile device by instantly pushing alerts to the users to verify login right as they access their VPN network. With a simple “OK” acknowledgement from the user, the VPN or website access is securely established – making it much faster and more convenient to authenticate users and secure the connection.
While the user experience is incredibly simple, the new feature is rooted in Entrust Datacard’s approach to defeating account takeover attacks. Adopting this new mobile-enabled push notification approach enables enterprises to evolve from older, less secure methods that rely on usernames, passwords and hardware tokens.
Mobile push authentication is a key element of the Entrust IdentityGuard enterprise authentication platform, which is designed for flexibility and scalability. Organizations can deploy the platform for their uses today, and then as requirements change or new threats emerge, Entrust Datacard customers can quickly scale up capacity or deploy new technologies by simply unlocking new functionality through the platform.
IdentityGuard Mobile Push Authentication is part of the latest release of the IdentityGuard platform that includes a number of capabilities to help banks and other enterprise customers address their identity based security needs. Specifically, the IdentityGuard platform now supports both QR code-based transaction verification and the recently introduced Microsoft Active Directory Federation Services (ADFS) 3.0.
QR code-based verification provides banking customers a strong and convenient mobile-based approach that eliminates the need for dedicated hardware such as EMV CAP readers or pocket tokens. Additionally, support for Microsoft ADFS 3.0 allows IdentityGuard mobile two-factor authentication to be extended to all cloud-based enterprise applications that leverage ADFS 3.0.
Identiv demos IoT solutions
Identiv Inc. attended the RSA Conference for the first time to showcase its Internet of Things (IoT) security solutions and to preview uTrust Message, a new mobile message security and privacy solution using the Identiv Trust Service.
During RSA, Identiv is highlighting new solutions in:
IoT: Identiv is showcasing products that have emerged from its Identiv Labs, a new idea incubator focused on IoT, such as new physical sensors that connect uTrust Sense devices to the network. Through the use of new Bluetooth and RFID tags
Message Security: CSOs and security professionals attending RSA can preview the beta version of Identiv’s uTrust Message, a platform for strong identity on any mobile device, combining a high security active sticker and mobile application that provides message and email encryption, and privacy for employees and consumers, even for those using personal mobile devices.