Strong authentication using your Brain : IAG and Gridsure.

Gridsure, a UK company, has created a very nice way to provide strong authentication. Strong authentication combines what you know (login, password) and what you have (something physical). In the long list of strong authentication mechanisms we know Smartacards, tokens, and more recently we have seen products capable of using the “mobile phone” as a…

0

H1N1 and mobility : how to quickly implement a remote access solution

In my day to day activity, I frequently have to discuss with customers and partners about technology around mobility and security. In the last 4 weeks I had a lot of requests from customers in the context of H1N1 disease, this is why I created this post. The main concern about this disease (I would…

0

Introduction to application reverse engineering : The CWA (Communicator Web Access) R2 case.

By Lucimara Desiderá (MS Consultant, São Paulo) & Frédéric ESNOUF (MS Pre-sales IDA, Paris)   Introduction   Intelligent Application Gateway is a very powerful remote access solution which provides a wide range of technologies such as VPN, VPN/SSL, Port forwarding and Reverse Proxy for application publishing. It also provides endpoint access controls including mechanisms for…

2

Publishing web applications though IAG : what if it fails ?

Microsoft IAG (Intelligent Application Gateway) is a powerful “mobility” gateway capable of providing remote access to different kind of people: employees, partners, customers, … It introduces several approaches to provide this mobility: ·        “Reverse proxy”: this is the most common scenario, for Web applications. This is the strongest approach since IAG can do a lot…

0

Mobility in the middle of your lifestyle

Lucky me, I am working for a company where mobility is truly part of the way we work. When I joined Microsoft, they gave me a “package” of technologies that I use every day. Check this picture: ·        A Laptop: running Windows 7 for now 6 month (I love Win7), strong enough to run Virtual…

0

GEMALTO (Gemplus / Axalto Merger)

GEMALTO authentication server is called Protiva. It is a global authentication solution which can especially provide OTP (One Time Password) authentication.   The integration is very simple since the protocol used between IAG and Protiva server is Radius, so we just need to change a few things.   Step 1 : In IAG, create a…

0

How to detect Skyrecon software in IAG

By default, IAG is capable of detecting a wide range of software on the client side. What happen if the software I want to check is not in the list ? I had that constraint with one of my partners, Skyrecon Here is the methodology we used : 1) asked the partner to create a…

0

Extending client-side analyzis (example : Test Registry Key)

  IAG is able to inspect your workstation and then later, per application, verify if you are compatible with the security policy.   For example, you want to make sure that only “corporate” machine can access ApplicationA, but everybody (of course after authentication) can access applicationB… etc.   You can go even deeper, and specify…

0