Re: Proximity Authentication

["Jones, Dan" <Dan.Jones () UMASSMED EDU>]

Our parking office is currently deploying a new proximity card system,
and we will most likely start using it for two-factor authentication in
several places. 

 

Background:

The card system is provided by HID Corporation. We have the Prox cards
with 16 "processors". Each processor can support an additional system.
The base "system" will be for building access including biometrics for
access to restricted areas (drug lab, etc.). 

 

Our library will use one processor for checking out books at the
reference desk. Food services will use another to help expedite their
point of sale stations. 

 

Information Services' Use: 

To enable this technology for use with IT, we will use Verisoft's Access
Manager. The enterprise version extends the Active Directory schema to
include the card information as well as biometrics, etc. in the
directory. The access manager has features that enable access policies
based on the user's location (IP address), level of authentication
(two-factor or not), system patch level and other factors. 

 

There is also a non-enterprise version of the software which has worked
well for me on a stand-alone station, although if you frequently update
Firefox this software will always tell you that your browser is "too
new" to be supported.

 

USB style prox card readers (CardMan 5321) came from AAITG.com. 

 

We're just starting to test this and it looks quite promising. 

 

Best,

 

Dan Jones

Manager of IT Security

University of Massachusetts

 

________________________________

From: Gibson, Nathan J. (HSC) [mailto:Nathan-Gibson () OUHSC EDU] 
Sent: Friday, March 23, 2007 11:02 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Proximity Authentication

 

Has anyone implemented (or observed) a proximity network logon solution
for end users.  Is so could you provide any information.

 

V/R,

Nathan J. Gibson, CISSP

Information Technology, Information Security Services

University of Oklahoma Health Sciences Center

Rogers Building, Room 128

Office: (405) 271-2476

Fax: (405) 271-2181

EXT:50270

Cell: TBD

http://it.ouhsc.edu/services/infosecurity
<http://it.ouhsc.edu/services/infosecurity> 

 

 

Confidentiality Notice

This e-mail, including any attachments, contains information from the
University of Oklahoma Health Sciences Center, which may be confidential
or privileged. The information is intended to be for the use of the
individual or entity named above. If you are not the intended recipient,
be aware that any disclosure, copying, distribution or use of the
contents of this information is prohibited.

 

If you have received this e-mail in error, please notify the sender
immediately by a "reply to sender only" message and destroy all
electronic and hard copies of the communication, including attachments.