Secure Logon / PKI Solutions
Authentication and logon systems with smart cards
Comex Electronics AB has developed products such as drivers and client software that integrates the use of Comex BioSec Reader® and smart cards into Microsoft Windows and Linux/Unix environments.
All products are carefully reviewed by a third party, which secures that design and quality of source code matches the security demands for the systems intended security level such as Top Secret, Secret or Restricted. Common Criteria EAL4+ or EAL2+ documentation are also produced for all products.
We can adjust our secure authentication and logon system to your specific needs. Contact software@comex.se, or call +46 8 630 82 30 for more information.
Client software for PKI solutions — cAccess
cAccess integrates the use of smartcards into Microsoft Windows or Linux/Unix envirnments, enabling the use of Public Key Infrastructures (PKI) within your organisation.
cAccess enables functionalities such as:
- Increased security in the authentication process to computer systems
- Supports both local logon and domain logon
- Digital signing and encryption of e-mail in MS Outlook
- Digital signing of documents, such as MS Word, Excel and Adobe Acrobat
- Establishing of virtual private network (VPN)
- Terminal services and Citrix connections
Presence based secure access — BeThere®
BeThere® is a unique product that combines two worlds, the physical security represented by the access control system ARX (ASSA), and the logical security concerning computer network logon. This combination reduces several of the most common security risks regarding access to both computer networks and restricted areas.
What does BeThere® do?
When a user tries to logon to a computer network account, BeThere® only allows access if the user is successfully authenticated in the physical access control system and resides in an allowed security zone. Since the ARX system is configurable to have a building, a floor or a single room as separate security zones, a user can be allowed to logon to a computer network account in for example the sales department but not in the research and development department.
High flexibility and easy to use
BeThere® can easily be adjusted to meet the customers specific needs:
- BeThere® can be used together with token (e.g. smartcard) or username/password logon
- Different access rules can be configured for individual users or user groups. For example, only allow consultants to logon to the computer network weekdays between 09.00 and 18.00.
- BeThere® is very simple to incorporate into an existing computer network. There is no need for user education. The user will not notice any change as long as they authenticate themselves properly in the ARX access control system.
- The administration of BeThere® can be performed centrally.
Here are some examples of benefits when using BeThere®:
- Reduces the insider threat
It is easy and fast for an attacker to copy data like source codes and blueprints to a USB- stick. A rule can be set to only allow access to secret computer systems, like for instance the R&D network, if there are at least two people in the room. Perhaps one of them must have a special security clearance? - Reduces the social engineering threat
It is very difficult to protect against the social engineering threat. But the usage of Be There® will make all employees aware of the importance of authentication within the physical access control system. If you let someone in by holding up the door, that person cannot work because it is impossible to logon to the computer account. - Increased control and traceability of employees
Since all employees will learn to authenticate within the physical access control system, the control and traceability of the employees will increase. This could be very important in case of fire.
