SlideShare a Scribd company logo

Password Express (PXP)

ILANTUS Technologies
ILANTUS Technologies

Password Express is a next generation password management and password synchronization tool that provides users with reduced sign on experience across all applications and password self-service from any device, anytime and anywhere. With Password Express, users only need to remember one complex password and not many.

Technology
1 of 2
Download to read offline
Technical Note Password Express Security – A technical note Password Express is a next generation password management and password synchronization tool that provides users with reduced sign on experience across all applications and password self-service from any device, anytime and anywhere. With Password Express, users only need to remember one complex password and not many. Security in Password Express Password Express benefits Increase user convenience and productivity Reduced sign-on across all web and thick client applications Password self-service from any device, anytime and anywhere Reduce password related help-desk calls Achieve compliance with extensive auditing and reporting SIMPLE With ILANTUS’s deep domain experience in IAM and security since year 2000, Password Express has been architected ground up considering security best practices to meet industry standard compliance norms. Password Express deals with some sensitive data that makes it imperative to secure data either at rest or in motion. Password Express Development Right from the development of the tool, the engineering team follows strict security development lifecycle program based on AGILE SCRUM methodologies. Before any version release is done, there are dedicated SPRINTS on peer code review, vulnerability and penetration testing. Security while data is in motion Communication between all Password Express components is over a secured channel as depicted in the diagram. SECURE SWIFT
The following are the interactions between various components as indicated in the diagram: 1. User’s browser to Password Express Server – This communication is over secured HTTP(S) channel and is encrypted. Depending on Password Express deployment architecture, firewall, intrusion detection system, proxy or reverse proxy could be some of the components that may be involved as well. 2. Password Express Server to LDAP – This communication is over secured LDAP(S) channel and is encrypted. 3. Password Express Server to Database – This communication is over secured channel and is encrypted. Security while data is at rest Static data resides in Database. All tables that have sensitive information are encrypted using industry standard AES 256-bit block cipher encryption with unique key per customer. Below table highlights the various additional security parameters of Password Express Security Parameter Remarks  Multi-Factor Authentication   Secured Vault  In addition to regular userid/password based authentication, Password Express also supports multi-factor authentication built on HMAC-SHA1 algorithm. The second level of authentication adds additional layer of security for user authentication. For password self-service, Password Express stores challenge response questions in a secured vault within the database. All sensitive information such as challenge response question is encrypted with industry standard AES 256-bit block cipher encryption with unique key per customer.  Password Express at runtime synchronizes password across all applications. No password is stored in the Password Express database or secured vault. Vulnerability and Penetration Testing  Every Password Express release undergoes thorough vulnerability and penetration testing to ensure strict security standard is followed. Extensive Auditing & Logging  All events on Password Express are audited and log levels can be configured. SIEM integration for co-relations and analytics  SIEM solutions could be integrated with Password Express audit tables for co-relations to detect anomalies at the enterprise level. Password in Secured Vault ILANTUS is a pioneer in identity and access management for more than a decade in industry delivering the most comprehensive identity solution through its unique Hosting Express (HXP). The HXP is built on a unique framework that enables components from multiple vendors of your choice to be integrated into a unified solution, delivered in cloud or on-premise, and managed by you or ILANTUS. All major Identity & Access Management components - Identity & Access Governance, User Administration & Provisioning and Identity & Access intelligence are incorporated in the HXP framework. HOSTING

Recommended

Incontro 2 - Le simmetrie
Incontro 2 - Le simmetrieIncontro 2 - Le simmetrie
Incontro 2 - Le simmetrie
dcirri
 
036 sezione aurea
036 sezione aurea036 sezione aurea
036 sezione aurea
iva martini
 
Arte
ArteArte
Arte
iva martini
 
La simmetria in natura e arte
La simmetria in natura e arteLa simmetria in natura e arte
La simmetria in natura e arte
I.P.S. "CABRINI" - Taranto
 
matematica e arte
matematica e artematematica e arte
matematica e arte
vanveen1967
 
Il rapporto aureo in arte, storia e natura
Il rapporto aureo in arte, storia e naturaIl rapporto aureo in arte, storia e natura
Il rapporto aureo in arte, storia e natura
Natura Matematica
 
La successione di Fibonacci e la proporzione aurea
La successione di Fibonacci e la proporzione aureaLa successione di Fibonacci e la proporzione aurea
La successione di Fibonacci e la proporzione aurea
Maestra Diana
 
7. Architettura greca - Il tempio - Gli ordini architettonici
7. Architettura greca - Il tempio - Gli ordini architettonici7. Architettura greca - Il tempio - Gli ordini architettonici
7. Architettura greca - Il tempio - Gli ordini architettonici
LEZIONI DI STORIA DELL'ARCHITETTURA - Prof.ssa Philomène Gattuso
 

Recommended

Incontro 2 - Le simmetrie
Incontro 2 - Le simmetrieIncontro 2 - Le simmetrie
Incontro 2 - Le simmetrie
dcirri
 
036 sezione aurea
036 sezione aurea036 sezione aurea
036 sezione aurea
iva martini
 
Arte
ArteArte
Arte
iva martini
 
La simmetria in natura e arte
La simmetria in natura e arteLa simmetria in natura e arte
La simmetria in natura e arte
I.P.S. "CABRINI" - Taranto
 
matematica e arte
matematica e artematematica e arte
matematica e arte
vanveen1967
 
Il rapporto aureo in arte, storia e natura
Il rapporto aureo in arte, storia e naturaIl rapporto aureo in arte, storia e natura
Il rapporto aureo in arte, storia e natura
Natura Matematica
 
La successione di Fibonacci e la proporzione aurea
La successione di Fibonacci e la proporzione aureaLa successione di Fibonacci e la proporzione aurea
La successione di Fibonacci e la proporzione aurea
Maestra Diana
 
7. Architettura greca - Il tempio - Gli ordini architettonici
7. Architettura greca - Il tempio - Gli ordini architettonici7. Architettura greca - Il tempio - Gli ordini architettonici
7. Architettura greca - Il tempio - Gli ordini architettonici
LEZIONI DI STORIA DELL'ARCHITETTURA - Prof.ssa Philomène Gattuso
 
Score your Goals, Leave Password Management to us!
Score your Goals, Leave Password Management to us!Score your Goals, Leave Password Management to us!
Score your Goals, Leave Password Management to us!
ILANTUS Technologies
 
Sign On Express for BPO
Sign On Express for BPOSign On Express for BPO
Sign On Express for BPO
ILANTUS Technologies
 
Heartbleed
HeartbleedHeartbleed
Heartbleed
ILANTUS Technologies
 
Heart bleed
Heart bleedHeart bleed
Heart bleed
ILANTUS Technologies
 
ILANTUS Customer Case Study -- iGATE
ILANTUS Customer Case Study -- iGATEILANTUS Customer Case Study -- iGATE
ILANTUS Customer Case Study -- iGATE
ILANTUS Technologies
 
Sign- On Express- Data Sheet
Sign- On Express- Data SheetSign- On Express- Data Sheet
Sign- On Express- Data Sheet
ILANTUS Technologies
 
Password Express - Data Sheet
Password Express - Data SheetPassword Express - Data Sheet
Password Express - Data Sheet
ILANTUS Technologies
 
ILANTUS Password Express FAQs
ILANTUS Password Express FAQsILANTUS Password Express FAQs
ILANTUS Password Express FAQs
ILANTUS Technologies
 
Case Study
Case StudyCase Study
Case Study
ILANTUS Technologies
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
MadyBayot
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
MIND CTI
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
Andrey Devyatkin
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Edi Saputra
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
sudhanshuwaghmare1
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
WSO2
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
apidays
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
The Digital Insurer
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
Nanddeep Nachan
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
apidays
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Orbitshub
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
Zilliz
 

More Related Content

More from ILANTUS Technologies

Case Study
Case StudyCase Study
Case Study
ILANTUS Technologies
 

More from ILANTUS Technologies (9)

Score your Goals, Leave Password Management to us!
Score your Goals, Leave Password Management to us!Score your Goals, Leave Password Management to us!
Score your Goals, Leave Password Management to us!
 
Sign On Express for BPO
Sign On Express for BPOSign On Express for BPO
Sign On Express for BPO
 
Heartbleed
HeartbleedHeartbleed
Heartbleed
 
Heart bleed
Heart bleedHeart bleed
Heart bleed
 
ILANTUS Customer Case Study -- iGATE
ILANTUS Customer Case Study -- iGATEILANTUS Customer Case Study -- iGATE
ILANTUS Customer Case Study -- iGATE
 
Sign- On Express- Data Sheet
Sign- On Express- Data SheetSign- On Express- Data Sheet
Sign- On Express- Data Sheet
 
Password Express - Data Sheet
Password Express - Data SheetPassword Express - Data Sheet
Password Express - Data Sheet
 
ILANTUS Password Express FAQs
ILANTUS Password Express FAQsILANTUS Password Express FAQs
ILANTUS Password Express FAQs
 
Case Study
Case StudyCase Study
Case Study
 

Recently uploaded

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Orbitshub
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 

Recently uploaded (20)

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..
 

Password Express (PXP)

  • 1. Technical Note Password Express Security – A technical note Password Express is a next generation password management and password synchronization tool that provides users with reduced sign on experience across all applications and password self-service from any device, anytime and anywhere. With Password Express, users only need to remember one complex password and not many. Security in Password Express Password Express benefits Increase user convenience and productivity Reduced sign-on across all web and thick client applications Password self-service from any device, anytime and anywhere Reduce password related help-desk calls Achieve compliance with extensive auditing and reporting SIMPLE With ILANTUS’s deep domain experience in IAM and security since year 2000, Password Express has been architected ground up considering security best practices to meet industry standard compliance norms. Password Express deals with some sensitive data that makes it imperative to secure data either at rest or in motion. Password Express Development Right from the development of the tool, the engineering team follows strict security development lifecycle program based on AGILE SCRUM methodologies. Before any version release is done, there are dedicated SPRINTS on peer code review, vulnerability and penetration testing. Security while data is in motion Communication between all Password Express components is over a secured channel as depicted in the diagram. SECURE SWIFT
  • 2. The following are the interactions between various components as indicated in the diagram: 1. User’s browser to Password Express Server – This communication is over secured HTTP(S) channel and is encrypted. Depending on Password Express deployment architecture, firewall, intrusion detection system, proxy or reverse proxy could be some of the components that may be involved as well. 2. Password Express Server to LDAP – This communication is over secured LDAP(S) channel and is encrypted. 3. Password Express Server to Database – This communication is over secured channel and is encrypted. Security while data is at rest Static data resides in Database. All tables that have sensitive information are encrypted using industry standard AES 256-bit block cipher encryption with unique key per customer. Below table highlights the various additional security parameters of Password Express Security Parameter Remarks  Multi-Factor Authentication   Secured Vault  In addition to regular userid/password based authentication, Password Express also supports multi-factor authentication built on HMAC-SHA1 algorithm. The second level of authentication adds additional layer of security for user authentication. For password self-service, Password Express stores challenge response questions in a secured vault within the database. All sensitive information such as challenge response question is encrypted with industry standard AES 256-bit block cipher encryption with unique key per customer.  Password Express at runtime synchronizes password across all applications. No password is stored in the Password Express database or secured vault. Vulnerability and Penetration Testing  Every Password Express release undergoes thorough vulnerability and penetration testing to ensure strict security standard is followed. Extensive Auditing & Logging  All events on Password Express are audited and log levels can be configured. SIEM integration for co-relations and analytics  SIEM solutions could be integrated with Password Express audit tables for co-relations to detect anomalies at the enterprise level. Password in Secured Vault ILANTUS is a pioneer in identity and access management for more than a decade in industry delivering the most comprehensive identity solution through its unique Hosting Express (HXP). The HXP is built on a unique framework that enables components from multiple vendors of your choice to be integrated into a unified solution, delivered in cloud or on-premise, and managed by you or ILANTUS. All major Identity & Access Management components - Identity & Access Governance, User Administration & Provisioning and Identity & Access intelligence are incorporated in the HXP framework. HOSTING