An ArcotID PKI offers the same capabilities as a physical smartcard for authentication, digital signing, encryption, and decryption for PKI-enabled applications, without requiring any end-user hardware. The ArcotID PKI can authenticate to any Web application, even if that application does not support PKI-based authentication.
The following figure illustrates the use cases for ArcotID PKI.
An ArcotID PKI is a data file that is saved on an end user's computer, USB drive, or downloaded remotely for secure on-demand authentication. Unlike the simple password, an ArcotID PKI is not vulnerable to brute force password attacks. Additionally, the ArcotID PKI is not vulnerable to man-in-middle attacks, which, in turn, protects users from phishing attacks.
An ArcotID PKI can be used for strong authentication with a variety of applications, such as the Web or Virtual Private Networks (VPNs).
The ArcotID PKI is a configurable solution that bridges the gap between simple-but-insecure username-password-authentication and expensive-difficult-to-deploy, but very secure smartcard and USB token solutions.
The ArcotID PKI is based on industry standards and CA’s patented Cryptographic Camouflage technology to provide software-only, strong authentication that is protected against brute force attacks.
Although an ArcotID PKI is protected by a password, it supports the following features to provide strong authentication:
|
Copyright © 2013 CA.
All rights reserved.
|
|