RSA SecurID Appliance Secure and Simple

RSA SecurID Appliance

Secure and Simple

Michal ČervinkaSOFT-TRONIK, [email protected]

Agenda

• Market Need for Authentication

• Key Security Challenges

• RSA SecurID Appliance— Key Benefits & Features

• Availability Choices— Bundles vs. A-la-Carte Choices

— Upgrades

Growing Demand for Authentication

Market Drivers

• Regulatory compliance issues across all industries and geographies

• Increasingly open networks and mobile workers

• Fundamental weakness of passwords as a security mechanism

• Increased number of online users

• Increased emphasis on privacy

*Source: IDC 2005 Worldwide Hardware Authentication 2005 – 2009 Forecast

IDC Predicts nearly 100% market growth over next five years

• Appliance is becoming de-facto standard for software delivery

• Windows versus Linux debate SMB -- 75% of the SMB Server Market is Dominated by Windows

Growing Focus on Appliances

80% of Security Solutions will be delivered in the form of a Dedicated Security Appliance by 2007 (IDC)




• Availability Choices — Bundles vs. A-la-Carte Choices

— Upgrades

Agenda

Key Security ChallengesFor Organizations of all sizes

• Providing strong security for mission-critical resources

• Reducing costs related to security administration & management

• Enhancing productivity for remote workers and limited IT resources

• Strengthening compliance with internal & external security policies

• Rapidly deploying a new solution to address security needs

• Large Enterprise (>1000 employees)— Multiple remote locations/branches

— Centralized technical expertise & administration, lack of highly qualified remote IT staff

— Large user population base

— Multiple approval levels and sign-offs to procure new IT solution

• Unique Challenges— Ensuring secure remote access to critical corporate resources despite a

widely-dispersed user base

— Reducing costs by centralizing security management but equipping remote locations with easy-to-use authentication solutions

— Strengthening compliance via centralized security policy enforcement

— Introducing a scalable solution that meets a wide range of enterprise needs (integration with WAM & federation environments, wireless etc.)

…But Large Enterprise Have Some Unique Challenges

• Small & Medium Sized Organization (< 1000 employees)— One location

— Limited IT staff, not as specialized as in larger organizations

— Relatively small user population base

— Small procurement budget for IT solutions

• Unique Challenges— Ensuring strong security without giving up simplicity

— Minimizing costs related to both acquisition and ongoing management

— Strengthening compliance via easy-to-use reporting capabilities

— Introducing a rapidly-deployable solution without draining limited IT resources

…Smaller Organizations Have some Unique Challenges

Agenda





— Upgrades

RSA SecurID Appliance An all-in-one Authentication solution

• Strong Security— Industry-leading Two Factor Authentication

in a hardware appliance format

• V1.0 introduced in 2005— Targeted at SMB market

— Bundles of 10, 25, 50, 100, 150 & 250 users

• V2.0 introduced in 2006— Updated to meet needs of larger

enterprises

— Robust new capabilities

— Scales up to 50,000 users

— Still available to smaller organizations via easy-to-procure pre-defined bundles

RSA SecurID Appliance 2.0 Key Features

• Leverages appliance HW / OS— Appliance Hardware – P4, 512MB, 80GB Disk

— Hardened Windows 2003 Server SE

— Intuitive Web GUI

• Base or Enterprise License— 1 Primary, 1 Replica (Base license)

— 1 Primary, 10 Replicas, 6 realms

• Authentication Manager v6.1 Feature Set — 802.1x-based security for wired and wireless

environments

• Test up to 50,000 users

• Supported Environments— Appliance Primary / Replica

— Auth Mgr Primary / Appliance Replica

Agenda





— Upgrades

What is part of a SID Appliance Bundle?

3-yr Tokens

1YR HW Warranty

SW License

RSA SecurID Appliance

Bundled Pricing Options100, 150 & 250 Users

• Ideally suited for SMBs, but not limited to SMBs

• Each bundle consists of:— RSA SID Appliance w/ embedded

MSoft Windows 2003 OS & RSA Auth Manager software pre-loaded. (includes a 12-month HW warranty)

— RSA Authentication Manager Base Edition license (1 Master, 1 Replica)

— RSA SecurID 3-year SD700 authenticators

— End user must choose between:

• RSA SecurCare Standard (9x5) or

• RSA SecurCare Extended maintenance package (24x7)

http://www.microsoft.com/windowsxp/default.asp

1. Choose the Appliance

2. Pick the RSA Authentication Manager License – Base or Enterprise

3. Select the number of users

4. Choose the maintenance option

5. Select the number and type of tokens

6. Order the number of desired

replicas.

A-la-Carte Order OptionsNew in 2006!

Greater Flexibility & Scalability

• Appliance Conversion Kit is offered to current software-based RSA SecurID solution customers

• Available to both Enterprise and SMB customers

— includes:

• Fixed price Appliance hardware

• A new RSA Authentication Manager software license

• Detailed procedures outlining the steps to migrate data from the RSA Authentication Manager to the RSA SecurID Appliance

Appliance Conversion Kit

• Upgrading from a Base to an Enterprise License

— Moving from 1 Master, 1 Replica to a scenario with 1 Master, 10 Replica, 6 realms

• Upgrade from RSA SecurID Appliance v1.0 to v2.0

— Moving from RSA SecurID Appliance v1.0 (running on RSA Authentication Manager 6.0) to RSA SecurID Appliance 2.0 (running on RSA Authentication Manager 6.1)

Other Upgrade Options

RSA SecurID Appliance 100Launched at CeBit in March’07

• What is the solution:— $8499 (+ maintenance) sold with 100 maximum user license

— Ideally suited for sub-500 employee firms

— Ships with 25 RSA SecurID 700 3-year tokens

— License components

• RSA Authentication Manager 6.1x Base license

• Remote Access use only

• Administration through Web interface (expect for Radius set-up)

• Embedded database user repository

— Capacity based system aligning with how VPN vendors sell product

— Higher value at Initial purchase

• 100 user capacity system positions SMBs for today and beyond

• Incremental upgrades only require additional token purchases

Bre

ad

th o

f Fu

ncti

on

ality

SecurID Appliance 100

SecurID Appliance 2.0

Authentication Manager (software)

Designed for:•New customers•Sub-500 employee organizations

What’s Included:• Authentication Manager

Base License only (1 primary, 1 replica)

• Supports Windows OS only• Maximum of 100 users only• Ships with 25-SID700 3 year

tokens• Aligns w/VPN vendor pricingLimitation:• LDAP synch not supported

Designed for:•New customers•Medium to Large Enterprises •Existing SID customers who want to replace existing SW environment with Appliances (or want SW primary and Appliance replicas)

Designed for:• Medium to Large Enterprises• Organizations that prefer software deployments• Organizations that don’t prefer Windows OS


Base or Enterprise License available

• Base (1 primary, 1 replica) or Enterprise (1 primary, 10 replicas)

• Supports Windows OS only• Maximum of 50,000 users • Available in bundles (3-yr

SID700 tokens only)• Available with a-la-carte

pricing as well (choose your Auth Mgr License & type of token)

Limitation:• >than 10 concurrent remote

admin sessions not supported


Base or Enterprise License available

• Base (1 primary, 1 replica) or Enterprise (1 primary, 10 replicas)

• Supports multiple platforms (Windows, Linux etc.)

• Supports more than 50,000 users

• Flexibly configurable software solution via an a-la-carte pricing model

Which Server Form Factor is Right for You?

RSA SecurID ApplianceSummary

• Proven Technology from the Industry Leader— Leading vendor in Authentication

— Over 70% market share in Authentication

• Targets the needs for your business — Improves security and user mobility through remote access security

• Appliance Form Factor provides low TCO

— Low acquisition cost

— Speed of deployment

— Ease of ongoing Administration

Documents

RSA SecurID Appliance Secure and Simple