Phone Factor

摘要

PhoneFactor provides the addition of second-factor authentication using something everyone has. This product uses a phone as a token. With this solution, users can enlist their phone to provide a second factor of authentication through a call, text message or even voice recognition. This also provides full, out-of-band security and can be used both inside and outside of the enterprise. For inside the organization, PhoneFactor can be used to authenticate to custom-sensitive applications, as well as many already existing applications, using RADIUS, Microsoft IIS and Windows-based authentication. For outside, it can be used to integrate with web-based applications, such as online banking and other account management applications for customers. This provides strong authentication at no extra cost to the user. This tool consists of two major components: The first is the PhoneFactor service. This is hosted by the company in a data center. The second part is the agent. This is installed on the customer site - or as part of the customer's cloud - and is used as a way to integrate PhoneFactor with applications and user accounts. Once the agent is deployed, it can synchronize with Microsoft Active Directory or LDAP (lightweight directory access protocol), which makes integration into an existing environment quite seamless. There is also a full, web-based user portal available as an optional third component. Users can access this portal for self-enrollment and other account management tasks. From the user side, we found this product to be well integrated and easy to use. New users can receive an automated email directing them to the user portal where they verify their phone number and complete a set of personalized security questions. Once that is complete, the user is enrolled and can begin using the product.