Network Access Control Solutions & Protection | Enterprise Password Management | Access Smart
Enterprise Password Management | Cyber Access Control

Power LogOn is available on Amazon

Power LogOn on AmazonI’m excited to announce that Power LogOn Administrator Starter Kit is available on Amazon. After placing Power LogOn on Amazon, I asked a number of our users if they wouldn’t mind adding a comment and a rating. We received great testimonials and more are coming in daily.  While I write about how passwords are secure – but the way they are managed isn’t – it is important to hear from actual users about the problems they were facing and how Power LogOn helped them.

 

IT Professionals love Power LogOn because it’s fast, easy and customizable.

From Mr. Cervantez, IT Installer Professional: I’m an IT pro and have installed it on my clients Windows Server 2008 along with 6 Windows 7 Pro workstations. It’s been about 1 yr and both doctors love it, they go from exam room to exam room insert their smart card into a slot on the Dell keyboard/smart card reader and securely logs them in, and when they’re finished with their patient they remove the card and the computer securely locks. Everything is customizable and the company has excellent support if you ever need it. Highly recommend it.

Read More→

White House CyberSecurity Czar’s mission is to kill passwords. Really?!

Passwords will never die!

Postit SecurityWhite House cybersecurity coordinator Michael Daniel stated at the 9th annual Identity Ecosystem Steering Group’s conference, “I often say that one of my key goals in my job that I would really love to be able to do is to kill the password dead.”

Really? With all the attacks and hacks coming from foreign governments, organized crime, hacktivists and terrorists, you want killing passwords to be your key goal? Multifactor authentication consists of three parts: Something you Know, Have and Are. Passwords are the something you Know so by killing passwords you weaken authentication. Read More→

ACCESS SMART® AWARDED GSA SCHEDULE CONTRACT

GSA Schedule Contract Awarded  to Access Smart® to purchase of multifactor cybersecurity IT products.

GSA scheduleLadera Ranch, CA – June 2, 2014 – Access Smart, LLC, a leading supplier of logical access control solutions (LACS), wins a General Service Administration (GSA) schedule contract.  As the US Government announces new cybersecurity regulations, Access Smart is proud that our Power LogOn® enterprise password management solution is now available to government sectors to address these regulations.

 

This contract will enable government agencies and the Department of Defense (DoD) procurement officials streamlined access to purchase a multi-factor authentication password manager that quickly integrates with existing CAC, PIV and CIV credentials. Power LogOn is FIPS 140-2 validated that uses AES-256 and SHA-256 encryption, password “salting” and builds upon an agency’s existing cyber infrastructure.

Read More→

CAC – Second Issue Focuses on Healthcare Security

CAC – Cyber Security for the Business Owner

CAC - Helathcare's Cyber Security StruggleAccess Smart announces the release of our second issue of CAC (Cyber Access Control) Magazine. The second issue of CAC focuses on the security concerns that healthcare providers face to protect patient medical information per the U.S. government’s HIPAA regulations.  Because security is a process and not a product, I have brought together many contributors to discuss these aspects.

HIPAA compliance is not easy, there are different  facets to it, and numerous other regulations for compliance.  For example there is employee training, physical security, electronic security, approved policy & procedure documents, encryption, electronic health records (EHR), and the list goes on.  Since security is made up of many parts, it only takes one weakness to bring the entire house down.  

Cyber Security MagazineThe cover art was picked to demonstrate the ultimate cost associated with a data breach.  HIPAA and the many other data privacy protection laws are complex and confusing; ignorance and non-compliance will no longer be tolerated by government authorities as an excuse for a breach.  Finally, while monetary fines and penalties amounting to millions of dollars are likely, there is also the threat that upper management will face prison time.   

The best course of action is to start educating yourself from these different industry experts.  Learn how they secure the healthcare market from their specialized point of view.

The conclusion I want you to come away with is that you first need to consult with trained security specialists and perform a total risk assessment.  Next, implement the technologies to fill any vulnerabilities.  Finally, once the security is in place have an insurance plan that covers your practice or business in case there is an attack.

You probably advise your patients to get an annual physical to identify any potential health risks before they develop into major complications.  Well, the same advice is true with your network security.  Once a breach occurs, the recovery costs back to wellness will be very high.  So please, get annual computer checkups so it’s not you on the cover.  

I hope you find the CAC valuable. To subscribe, simply click here.

 

Power LogOn is Heartbleed safe.

Power LogOn Heartbleed secureHeartbleed is very dangerous, but not to Power LogOn.

This week the cyber security community has been a buzz about the OpenSSL vulnerability and the Heartbleed bug.  This is a very serious problem and tech companies are scrambling to plug the holes, get patches out to companies and help them implement the fix.

I have been getting calls from our customers asking if the client / server communication channel in Power LogOn is safe from the Heartbleed bug. I’m happy to assure every Access Smart customer that the Power LogOn channel is secure.

There are many different security communication protocols available on the market. Access Smart’s engineers decided not to use or rely on the OpenSSL cryptographic functions.  Instead we choose a different NIST FIPS 140-2 approved cryptographic library.

After the different websites have updated their OpenSSL and assigned new keys, IT administrators will want to update all employee passwords.  This is very easy to do with Power LogOn.  IT can change every password as frequently as they deem necessary without the employee having to know, remember or type them.

Security has always been a cat ‘n’ mouse game. Access Smart is constantly monitoring this and other vulnerabilities and when something happens we evaluate and make necessary adjustments.

Rest assured, the Power LogOn server channel is secure from the Heartbleed bug.

About Access Smart

Founded in 2005 and headquartered in Ladera Ranch, California, Access Smart, LLC is a one-stop-shop offering a wide range of Single Sign-On cyber access control products (software, licenses, cards and readers) to make network multi-factor authentication deployment fast, easy and inexpensive. We are dedicated to empowering businesses, agencies and institutions to securely regain control over their computers and networks at the point of entry. Authentication, authorization and non-repudiation do not have to be cumbersome to be effective. That’s why our products are designed using state-of-the-art security technologies while focusing on ease-of-use and low-cost-of-ownership.

Previously, smartcard technology was only affordable to large government agencies and Fortune 500 companies. Access Smart has turned that model upside down by utilizing existing infrastructures and matching the technology to the needs. For example: you can use existing badge technologies, you have no backend server modifications, there are no annual subscription fees, and all your licenses are transferable.

Please contact Access Smart for a no obligation consultation on how best to implement Authentication, Authorization and Non-Repudiation into your business. Access Smart – The Alternative to PKI.