User generated content – also known as web 2.0 – is growing in popularity. Websites like My Space, personal homepages, personal photo albums and the like are all part of this latest social networking web trend. But it's not all as happy-go-lucky as it sounds.

Take blogs, for example. While visitors to the site might think they're getting simple entertainment, the latest news, or political commentary, they may also be picking up something much more sinister – dangerous content which has been planted in or infected the sites.

While URL filtering security relies on collected databases of established URL listings (i.e. www.CNN.com) to differentiate between good websites and bad websites, it cannot identify the grey sites – those lesser-known user-generated content sites which fall under the heading of web 2.0. It also cannot identify those legitimate URL sites whose content may have been infected by dangerous materials.

eSafe 5 FR2 is the ideal solution for protecting against dangerous user generated content. It not only filters URLs and ensures up-to-date anti-virus, it also inspects the entire content of all sites, whether known or unknown – including their user generated content, making sure users can safely surf the World Wide Web.

For more information on eSafe 5 FR2 and what it has to offer, contact your Aladdin sales representative.

eToken OTP Authentication Module 1.5 Now Generally Available
eToken OTP Authentication Module 1.5 has a number of new features and upgrades from previous versions. These include:

• Random OTP PIN generation now supports letters and other characters
• Supported authentication protocols now include MSCHAP v1.0 and MSCHAP v2.0 providing improved usability and security
• Broader language support – supports non-English-based Windows systems and recognizes non-English characters for authentication
• Increased usability of the OTP Authentication Manager (the tool used to configure the IAS plug-in)
  • When applying changes in the OTP Authentication Manager, IAS synchronization can now be performed in the same operation
  • Generation and setting of the security key can be done in the same operation
• Protection against illegitimate changing of the OTP PIN
  • In TMSWeb, re-enrolling an OTP profile that originally used an OTP PIN requires the old OTP PIN to be known before entering a new OTP PIN
  • Any failed OTP PIN change attempt adds to the OTP profile lock counter
• Dial-in permission settings can now be controlled through the TMS OTP Authentication Connector

eToken Now Supports OTP Authentication to Citrix WI 4.0
eToken is happy to announce the general availability release of the eToken OTP Authentication 2.0 for Citrix WI 4.0. New features in this version include:

• Support for Citrix MPS version 4.0 and WI version 4.0
  • Previous eToken Authentication solution for Citrix 1.0 supported only Citrix WI 3.0
• Support for multiple domains:
  • OTP Plug-in version 2.0, supports IAS servers from multiple domains, therefore it is now possible to authenticate users from several domains with OTP

The eToken OTP authentication for Citrix Web Interface (WI) solution enables secure Web-based access to the Citrix Presentation Server with eToken OTP strong authentication – anytime, anywhere.

eToken OTP authentication for Citrix WI is comprised of the eToken OTP Authentication solution and the eToken OTP Authentication 2.0 for Citrix WI software.

Please note that eToken offers certificate-based authentication to the Citrix Presentation Server as well, either with a certificate through the ISA client, or through the Web with SSL authentication using the secured Citrix WI.

To learn more about these and other eToken releases, contact your Aladdin Representative.

Now generally available, eSafe5 FR2 is a very important stage in the eSafe evolution. It follows the shift in threat types to web surfing attacks together with the desire of customers to implement a single gateway content security solution addressing obvious security issues. Specifically, these include web threats such as Spyware, Trojans and Phishing. Customers also need productivity – at the gateway, this translates into blocking access to malicious, non-productive and inappropriate site categories, as well as monitoring web usage by users or groups.

eSafe 5 FR2 with the profile-based URL Filtering add-on means customers no longer need install other products to benefit from profile-based URL filtering. This is a very important step, as it brings eSafe into direct competition with URL filtering vendors on the market. However, no other solution offers the extensive security of eSafe, which can match and probably beat most other URL filtering products.

This latest version of eSafe also includes several important features such as LADP integration and User/Group policies for URL Filter.

eSafe Spyware Neutralizer Net Released
Spyware Neutralizer Net was released with eSafe5 FR2. Spyware Neutralizer Net is a network tool enabling remote, client-less inspection and neutralization of active spyware found on PCs on the network. It complements the existing desktop antivirus by using smart inspection to find active spyware in the file system, registry and running processes. It takes 3-4 seconds to inspect a single PC and an extra 4-5 seconds to neutralize existing spyware – if found.

The benefits to the organization include: complete user transparency; no need for another desktop product; capability to carry out daily spyware inspection across entire organization; easy implementation and management; and simple, practical reports.

Selective Instant Messenger Filtering with eSafe
eSafe customers can now implement selective IM filtering. This latest feature allows users to enable chat, while specifically filtering the potentially dangerous file transfers, which frequently accompany Instant Messaging.

eSafe SecureSurfing Service for ISPs
ISPs have been lining up to offer eSafe's SecureSurfing™ service to their customers. The first ISP to make the move was Israel's Smile-Internet Gold, which has already reached tens of thousands of subscribed users. Since day one the service has become Internet Golds' number one selling value added service. Israeli Bezeq International joined a few weeks ago and is already reporting similar results.

For more information on these and other eSafe developments, contact your Aladdin representative.

Product News:

Aladdin eSafe 5 Achieves OPSEC Certification from Check Point Software Technologies; Provides Enhanced Security Monitoring and Management
Red Herring Software News: Flu Shots for Mobiles (eSafe)
Aladdin Granted Significant U.S. Patent (eSafe)

Industry News:

Citibank Phish Spoofs 2-Factor Authentication – The Washington Post

To get your copy of the eToken statement, "The Effectiveness of Phishing Attacks with One-Time Password and Smart Card Authentication Methods," contact your Aladdin representative.

Updated eSafe Sales Presentations Available
Three new eSafe sales presentations have been released. These include a presentation on online threats; a general security presentation; and an updated product introduction.

For more information on these latest eSafe sales tools, contact your Aladdin representative.

eSafe Webinars to Become Regular Occurrence
The eSafe Business Unit will be holding three webinars per month, covering three separate tracks. These include:

• Sales webinar – for Aladdin sales representatives and distributors
• General webinar – for customers and prospects
• Technical webinar –for eSafe technical engineers

New eToken Regulatory Compliance Documents Published
eToken has added two more documents to its series on the topic of regulatory compliance. The new publications cover the Food and Drug Administration (FDA) 21 Code of Federal Regulations (CFR) part 11; and the PCI Security Standard.

For more information on eToken regulatory compliance, contact your Aladdin representative.

New eToken Case Studies Go Online
Two new eToken Case Studies are now available online at the Aladdin website. One Case Study examines eToken usage by SCOR, one of France's leading re-insurers. To read that Case Study, click here.

The other details the University of Wisconsin-Madison's use of eToken to secure the computer usage of its numerous students, faculty and staff. Click here to read this Case Study.

eToken NG-FLASH can be easily initialized to automatically run a silent installation of the eToken PKI Client software when the token is plugged in. The following steps are needed:

• Prepare the silent installation files (PKI Client (RTE) MSI file, PKI Client executable, and auto-run file)
• Load the files onto the eToken, in a write-protected partition of the flash memory, using the eToken NG-FLASH Partition Application

For complete step-by-step instructions, please view the Knowledge Base Articles – Hardware Related Articles in the eToken Technical section in the Aladdin SecurityAlliance web site.

Q: How do I minimize my organization's exposure to Spyware?

A1: The majority of questionable adult/pornographic and hacking web-sites contain Spyware. Consider minimizing access of your employees to any inappropriate website.

A2: Ensure that the security level of the Internet Explorer and Outlook is set to Medium or above and that users will not be able to change it.

A3: Educate your employees regarding what ActiveX objects are and instruct them not to install ActiveX coming from websites that they do not trust 100%.

A4: Do not allow installation of any non-approved shareware and freeware software in your organization. Many shareware products include adware/spyware modules.

A5: Do not allow installation of any P2P applications such as KaZaa, eDonkey, etc. P2P is one of the major sources for malicious code and Spyware.

Contact Information:
Tell us what you think of PartnerNews, and what you’d like to see in future editions.

Past issues

Subscribe/unsubscribe to Aladdin security updates
Unsubscribe from PartnerNews