A number of new products have been added to the eToken family of authentication tokens, applications and management system. These new developments respond to the explosive demand for authentication technologies that can address complicated scenarios, new regulatory requirements, digital signature laws, and broader PKI deployments.

Aladdin's enhanced eToken product offering further improves companies' ability to implement full eToken authentication solutions tailored to their needs – offering the lowest total cost of ownership and the flexibility for future solution expansion. These product releases reinforce Aladdin's position as a complete, one-platform provider of powerful authentication solutions that are uniquely manageable, flexible, and easy to deploy and use. Aladdin's new eToken products will be on display at the RSA Conference in San Francisco February 5-9.

The new products and enhancements to be released in the coming months include:

• New eToken authentication devices – New devices will further expand and complement Aladdin's USB smart-card-based offerings, including a new one-time password token (eToken PASS), providing lower TCO to organizations by allowing them to deploy any mix of devices to best meet specific needs. eToken PASS complements the broadest selection of authentication devices on the market today, now including the eToken PRO (smart–card-based authentication device in both USB and card form factors), eToken NG-OTP (hybrid USB and OTP token), and eToken NG-FLASH (USB authentication token with flash memory) – all fully manageable by Aladdin's Token Management System.
• Broadest client platform support for PKI – eToken extends the industry's broadest client platform support for PKI deployments, featuring added Windows Vista, Linux, Intel-Mac and Mac Keychain support -- providing unparalleled flexibility for customers with multi-platform IT environments.
• Introducing a full Single Sign-On solution – As organizations continue to struggle with password security and management issues, Aladdin introduces eToken SSO, a full-fledged Single Sign-On application, providing secure credential management and strong authentication in a single solution that is easy to deploy and use. eToken SSO supports both secure portable storage of user logon credentials on-board the eToken devices, and secure local storage of credentials on users' PCs. Featuring centralized management and backup of credentials using eToken TMS, eToken SSO provides highly secure exception handling, including scenarios when an employee loses a token while on the road.
• Enhanced authentication management tools – Aladdin will unveil the latest version of its Token Management System (TMS), version 2.0, managing the full life cycle of eToken devices and associated security applications from one centralized system. TMS 2.0 expands on an open, standard-based architecture to offer enhanced scalability through a three-tier, Web-based architecture; new and improved Web-based user self-service and administrator management; handling of exceptions such as "employee-on-the-road lost token" scenarios; and full reporting and auditing. Additionally, TMS capabilities are expanded to specifically cater to the requirements of managed security service providers.

New eSafe Appliances Available in 2007

eSafe Hellgate appliances are the next generation in small to medium business content security. They provide organizations with the same comprehensive, enterprise-class content security that larger enterprises worldwide have come to expect from the award-winning eSafe solution.

This includes features such as:

• Proactive Anti-virus
• 4 Layer Anti-spyware
• Web/URL Filtering
• Application Filtering (IM, P2P)
• Spam Management
• Inbound/outbound Email Scanning
• Spam Management
• Inbound/outbound Email Scanning

Hellgate Appliances meet the needs of businesses with up to 500 seats, and those with over 500 seats.

The eSafe HG-100 appliance will be offered to customers with up to 500 seats and will be capable of processing approximately 20Mbps traffic with all modules activated.

The eSafe HG-200 appliance will be offered to customers with over 500 seats and will be capable of processing approximately 50Mpbs traffic with all modules activated.

New eSafe Reporter Due for Release in February
This enterprise-class reporting tool will include over 30 canned reports that can provide in-depth details on all the traffic inspected by eSafe.

eSafe Reporter enables either generation of reports in real-time, or easy scheduling of their generation and emailing via the eSafe Reporting Center. Its flexible data manipulation features enable the performance of historical trending and forensic analysis by tracing events in more detail. The Reporter is based on IIS Server and allows access from anywhere on the LAN.

eSafe Reporter includes:

• eSafe Reporter Collection Agent: imports sessions.log files from all eSafe servers, exports the data to the SQL database.
• eSafe Reporter Configurator: configures eSafe Reporter to scan for the sessions.log files, manage the database (aggregation and purge), launch daily, weekly or monthly reports and schedule the generation of dashboard reports.
• eSafe Reporting Center: enables the generation of more than thirty predefined real-time or scheduled statistical reports from the data exported into the database by the eSafe Reporter Import Agent. The eSafe Reporter Scheduler allows users to schedule the running and emailing of individual reports or daily, weekly, or monthly reports.

eSafe Web Threat Analyzer Shows eSafe in Top Form

eSafe WTA content security audit is a device designed to fit transparently on the network entrance. It collects information regarding the web threats that get through the network's defenses, and provides administrators with a report describing them.

eSafe WTA identifies threats hidden from conventional firewalls, intrusion prevention systems, and gateway antivirus, using its unique ability to perform fast, deep inspection of all web activity.

The Security Audit:

• An Aladdin representative pays the organization a visit
• Aladdin experts set eSafe WTA up on the network
• eSafe WTA transparently inspects all the network's web browsing activity
• A comprehensive report is produced, revealing the threats that got through the organization's security defenses. Aladdin experts then provide the organization with a report evaluation, assessing the threats that made it through and finding out exactly how secure the organization really is.

New eToken PKI Client Versions Released

Aladdin has released new PKI Client versions for Windows, Linux, and Mac OS platforms. These releases provide new functionality, enhanced support for the latest operating system versions, and consistent capabilities and user interface across all supported platforms. Below are some of the exciting features in these releases:

eToken PKI Client 4.0 for Windows:

• Windows Vista support
• Software "eToken Virtual" built into the PKI Client; provides a solution for employee-on-the-road lost token situations
• New enhanced and simplified user interface
• A new single logon mode on the eToken that enables access to the eToken multiple times with only one initial request for the eToken password
• Improved security – eToken password quality settings are stored on eToken device
• Support for single-factor authentication – "something you have" only

eToken PKI Client 3.65 for Mac:

• Mac Keychain support
• Support for PowerPC (Mac OS X 10.3/10.4) and the new Intel-based platform (Mac OS X 10.4.7)
• Support for all eToken devices

eToken PKI Client 3.65 for Linux:

• Support for the following Linux distributions -
  • Fedora Core 4.0
  • Suse 9.3
  • Red Hat Enterprise 4.0
• Support for Netscape and Mozilla Firefox browsers
• Support for all eToken devices

eToken Now "Ready for IBM Tivoli Software" and "Ready for IBM Lotus Domino Software"

Identity Management (IdM) Systems, such as IBM Tivoli Identity Manager (TIM), are integrated systems of business processes, policies, and technologies that enable organizations to facilitate and control their users' access to critical applications and resources. Integrating IBM TIM with eToken solutions provides a more secure environment, addressing a vital part of an organization’s security – user authentication. With the integrated solution, the organization can extend the IBM TIM user access management to a more comprehensive solution that also manages tokens and smart cards. This ensures that the correct access rights are given to the appropriate users, and that only legitimate users have access to the organization's most sensitive resources.

Lotus Domino provides a multiplatform foundation for collaboration and e-business, driving solutions from corporate messaging to Web-based transactions and everything in between. This messaging and collaboration system is built to help maximize human productivity. The integration of eToken with Lotus Notes provides security layers for authenticated access and email security and integrity. With Smartcard Login enabled, the user is required to use an eToken device to authenticate when logging on to the Lotus Notes application. In addition, eToken may be used to sign and encrypt emails using a digital certificate and private key residing on the eToken. With eToken, your identity, keys, and certificates are highly secured and fully mobile.

Click here to view the validations in the IBM web site.

Aladdin Blogs

Visit the Aladdin website (www.Aladdin.com) to access our latest blogs, written by Aladdin's industry experts and covering various security-related subjects. To visit the blogs, click here, or select the "About Us" option in the main webpage menu, then click on "Blogs."

Product News:

Aladdin Granted Significant European Patent for Real-Time Web Threat Inspection

Aladdin eSafe Gains Three Checkmark Certifications

MySpace Attack a 'Wake-Up Call' for Organizations, Proves Most Attacks Now Infect Users Through Web Sites

Virginia Tech Implements Aladdin eToken USB Smart Device for Secure Enterprise Technology Initiative

Major Police Forces Worldwide Deploy Aladdin Security Solutions

Hackers Target U.S. Defenses – Red Herring.com

eSafe CSRT 2006 Malware Report Released

The eSafe Content Security Report for 2006 is now available. The report gives a comprehensive overview of the past year in regards to malware and other content security threats. To get a copy, contact your Aladdin representative.

eSafe Achieves CheckMark Certifications

eSafe, once again, achieved coveted CheckMark certifications issued by WestCoast Labs. eSafe was tested for In-The-Wild Viruses, Spyware and Trojans and was found to be able to detect all 100% of the WestCoast Labs test set.

eSafe WebWatch Joins Security Portal

WebWatch has joined the eSafe Content Security Portal (http://www.esafe.com/csrt). WebWatch allows eSafe customers to verify URLs blocked by eSafe due to security reasons, and to see details about maliciousness of the blocked website.

eSafe 2007 Pricelists Now Available

The new eSafe price list for 2007 is now available. This price list includes several significant changes, and took effect on February 1, 2007.

To obtain the eSafe pricelist, contact your Aladdin eSafe representative.

Recent eSafe Webinars

AppliFilter™–Blocking Application Level Threats
Audience:	This webinar is intended for eSafe engineers, technical support engineers, and integrators.
Register:
Web Threat Analyzer – "A Sales Process in a Box"
Audience:	This webinar is intended for a general sales and marketing audience.
Register:

New eToken General Competitive Matrix Available

This recently released document includes an overview section listing key solution evaluation criteria followed by a detailed comparison table, and was built to highlight the eToken solution's general advantages over our main competitors in the market. This document is appropriate for distribution to prospects evaluating eToken during the sales cycle.

To obtain this document please contact your Aladdin eToken representative.

eToken Higher Education Materials Available

eToken has a full set of marketing materials for helping our partners win eToken sales in the higher education market. These include a white paper, sales presentation, numerous case studies, and recent customer win PRs, plus additional go-to-market tools.

For more information about this and other eToken developments, contact your Aladdin eToken representative.

Q1: I have a customer whose user repository is on MySQL over the Linux environment. Can eToken OTP authentication be implemented in such a scenario?

A1: Yes. eToken OTP Authentication (together with Aladdin's Token Management System) has been tested and shown to work with MySQL running in a Linux Debian environment. The eToken Integrations team is currently developing official technical documentation on implementing this solution. Customers that use MySQL on other Linux distributions will be able to use this documentation to modify and implement the integration in their environment.

Q2: Can I install eToken Web Sign-On (WSO) silently, without launching the Help page at the end of the installation?

A2: Yes. In order to run the WSO installation without an automatic launch of the help page at the end, please use the following command line: msiexec /i e:\wso_1_4.msi SHOWHELPAFTERINSTALL=0

Q: How do I activate Quarantine Reports in Outlook 2007?

The Issue

Quarantine Report email does not have "Learn" or "Learn & Release" actions in Outlook 2007.

Some Background

Microsoft Outlook 2007 stopped supporting a large subset of HTML elements, attributes, and forms in the email body, therefore there is no ability to perform "Learn" or "Learn & Release" actions in eSafe Quarantine Report by Outlook 2007 users.

The Solution

Add a message instructing Outlook 2007 users to open and view the Quarantine Report email in a regular IE browser, where they will be able to perform the "Learn" and "Learn & Release" the actions.

Instructions

Open eConsole | Configuration, and in the Quarantine Report Properties screen, add the following string at the end of the "Report heading:"

This will cause a special message to be displayed (only for Outlook 2007 mail clients), explaining how to open and view the report in a browser, where "Learn" or "Learn & Release" actions do work. Note: (esafe v5 limitation) - make sure that the total length of the header is not more than 512 bytes. A permanent solution for supporting Outlook 2007 mail clients will be in eSafe v6 (due Q1/2007).

Past issues

Subscribe/unsubscribe to Aladdin security updates