Cyber Access Control | MFA Enterprise Password Management | Access Smart

Archive for Company Updates

Access Smart Secures Website

HTTPS Everywhere safeguards our visitors from malware.

https everywhereAccess Smart, LLC, a leading supplier of Cyber Access Control solutions, moves their website from the standard, unsecure Hypertext Transfer Protocol (HTTP) to the Hypertext Transfer Protocol Secure (HTTPS) web communications scheme as specified in the HTTPS Everywhere program. As internet browsers like for Google Chrome, Mozilla Firefox and Opera put more emphasis on security with their “HTTPS Everywhere” program, Access Smart wanted to embrace this forward thinking cybersecurity program.

“Access Smart is a cyber access control security company”, said Dovell Bonnett founder and CEO of Access Smart. “We believe that cybersecurity has to start before the firewall and continue throughout the entire Internet channel. It only makes sense that we would want to do everything possible to protect all our website visitors and customers.” Read More→

Channel 9 Blogs about Power LogOn

Channel 9, a Microsoft community site for Microsoft customers, posts “Power LogOn Brings Additional Layer of Security to Azure.” “In today’s environment of increasingly sophisticated cyber-attacks, our mutual customers rely on proactive solutions such as Access Smart’s Power LogOn to help protect their computer systems,” said Nicole Herskowitz, Senior Director of Product Marketing for Microsoft Azure. “We are pleased that Access Smart will continue to make its security expertise available to help Azure customers improve the security of their data.”

Logon Security for Azure

Power LogOn Passes HHS/CDC Cyber Lab’s Security Evaluation

HHS CDC passes Power LogOn securityI’d like to tell you about a new secure password management and authentication solution that passed HHS/CDC cyber lab’s security evaluation to eliminate their employee managed password burdens.  It’s called Power LogOn® Government Edition. The cyber lab now has a multi-factor, IT centralized password manager for their existing PIV, CAC, or CIV credentials.

Here are a few of the specifications Power LogOn delivers:

  • Independent FIPS 140-2 verification
  • Secure, IT centralized password management and authentication
  • Every account can have up to a 500-character long unique password that can be changed as frequently as required without user involvement
  • Convenient for employees to log into multiple server, web and application accounts without them having to know or type the passwords
  • Scalable to fit any size department or agency, without a high cost of ownership
  • Compliments existing PIV credentials without re-badging or FIPS 201 re-certification
  • And a whole lot more

With Power LogOn Government Edition, the HHS IT team now implement very long complex passwords that are changed very frequently. All password changes are automatically pushed down to all users without their involvement or knowledge. Employees no longer have to generate, remember, type or even know any network, application or computer logon passwords. Power LogOn instantly integrates with existing PIV credentials without having to program or modify any file structures, thus avoiding any FIPS 201 re-certification issues.

Power LogOn is now ready and available on GSA Advantage for other government agencies and departments who struggle with the insecurity of employee generated and managed passwords.

To learn more about Power LogOn Government Edition and download our Capabilities Line Card please visit our webpage www.access-smart.com/gov.

 

Access Smart® Implements HTTPS Everywhere.

HTTPS Everywhere safeguards our visitors from malware.

https everywhereAccess Smart, LLC, a leading supplier of Cyber Access Control solutions, moves their website from the standard, unsecure Hypertext Transfer Protocol (HTTP) to the Hypertext Transfer Protocol Secure (HTTPS) web communications scheme as specified in the HTTPS Everywhere program. As internet browsers like for Google Chrome, Mozilla Firefox and Opera put more emphasis on security with their “HTTPS Everywhere” program, Access Smart wanted to embrace this forward thinking cybersecurity program.

“Access Smart is a cyber access control security company”, said Dovell Bonnett founder and CEO of Access Smart. “We believe that cybersecurity has to start before the firewall and continue throughout the entire Internet channel. It only makes sense that we would want to do everything possible to protect all our website visitors and customers.” Read More→

Power LogOn is Heartbleed safe.

Power LogOn Heartbleed secureHeartbleed is very dangerous, but not to Power LogOn.

This week the cyber security community has been a buzz about the OpenSSL vulnerability and the Heartbleed bug.  This is a very serious problem and tech companies are scrambling to plug the holes, get patches out to companies and help them implement the fix.

I have been getting calls from our customers asking if the client / server communication channel in Power LogOn is safe from the Heartbleed bug. I’m happy to assure every Access Smart customer that the Power LogOn channel is secure.

There are many different security communication protocols available on the market. Access Smart’s engineers decided not to use or rely on the OpenSSL cryptographic functions.  Instead we choose a different NIST FIPS 140-2 approved cryptographic library.

After the different websites have updated their OpenSSL and assigned new keys, IT administrators will want to update all employee passwords.  This is very easy to do with Power LogOn.  IT can change every password as frequently as they deem necessary without the employee having to know, remember or type them.

Security has always been a cat ‘n’ mouse game. Access Smart is constantly monitoring this and other vulnerabilities and when something happens we evaluate and make necessary adjustments.

Rest assured, the Power LogOn server channel is secure from the Heartbleed bug.

About Access Smart

Founded in 2005 and headquartered in Ladera Ranch, California, Access Smart, LLC is a one-stop-shop offering a wide range of Single Sign-On cyber access control products (software, licenses, cards and readers) to make network multi-factor authentication deployment fast, easy and inexpensive. We are dedicated to empowering businesses, agencies and institutions to securely regain control over their computers and networks at the point of entry. Authentication, authorization and non-repudiation do not have to be cumbersome to be effective. That’s why our products are designed using state-of-the-art security technologies while focusing on ease-of-use and low-cost-of-ownership.

Previously, smartcard technology was only affordable to large government agencies and Fortune 500 companies. Access Smart has turned that model upside down by utilizing existing infrastructures and matching the technology to the needs. For example: you can use existing badge technologies, you have no backend server modifications, there are no annual subscription fees, and all your licenses are transferable.

Please contact Access Smart for a no obligation consultation on how best to implement Authentication, Authorization and Non-Repudiation into your business. Access Smart – The Alternative to PKI.