Vaultize Introduces Multi-Factor Authentication in Enterprise File Sync and Share (EFSS) With Rights Management

Mar 24, 2016, 08:00 ET from Vaultize

NEW YORK, LONDON and SINGAPORE, March 24, 2016 /PRNewswire/ --

Vaultize (http://www.vaultize.com), the enterprise file security leader, announced the launch of Multi-Factor Authentication (MFA) in its Enterprise File Sync and Share (EFSS) - embedded with enterprise digital rights management (eDRM).

     (Logo: http://photos.prnewswire.com/prnh/20130710/626741 )

"Vaultize manages critical and confidential data of enterprise customers, those in security conscious and regulated verticals including Fortune 500s. To ensure highest level of security with additional IT controls, Vaultize is introducing multi-factor authentication for all users (internal or external), accessing the Vaultize system. This further strengthens enterprise file security parameters - helping IT administrators and security officers in data governance and compliance," said Sameer Vitkar, Regional Sales Head at Vaultize .

Traditional security systems rely on passwords to authenticate and authorize access to protected data. But such password-only systems are, in general, more vulnerable to security breaches as there is only one layer of security. To protect against such breaches, multi-factor authentication (MFA) or two-factor authentication (2FA) is used, which offers extra layer of security. This extra layer of security makes use of information that is accessible only to the user being authenticated.

Vaultize MFA enables the enterprise IT to have fine-grained control over user authentication. On top of regular password based authentication (with controls over password complexity and rotation), Vaultize administrator can now configure policies to add One-Time Password (OTP) or RADIUS (e.g. RSA SecurID tokens) as the second factor of authentication. Vaultize MFA can be enforced for internal users (e.g. at the time of Vaultize login) as well as for external or third-party users (e.g. while accessing a shared link or while opening a file protected using Vaultize Digital Rights Management).

Vaultize MFA - OTP  

OTP is a One-Time Password (usually a number), which is communicated to the user via a 'personal' communication medium like e-mail or SMS. This personal communication information like e-mail or mobile phone number is usually detected automatically via Active Directory or LDAP, but could also be manually entered by the administrator or the user. The communicated OTP has to be entered by the user at the time of authentication as a second layer of security. In Vaultize, to enable OTP based authentication for the users, administrator needs to configure the OTP parameters on the settings page.

The administrator can configure the 'Authentication Mode' (which denotes the communication medium of OTP - e-mail and/or SMS/text), number of digits in the OTP and how long the OTP will be valid (in minutes).

Once these OTP parameters are set, administrator can enable OTP based authentication for one or more Vaultize users/groups through policy. If enabled, the user has to go through a two-step process at the time of login. The first step is the usual - to authenticate using a username and password.

If password based authentication succeeds, an OTP is generated and communicated to the user via e-mail and/or SMS. Then the login screen changes into the OTP screen. Once the correct OTP is entered, the user authentication is successful. If either of the password or the OTP is incorrect, the user authentication fails.

Vaultize MFA - RADIUS  

RADIUS is a protocol for remote user authentication, authorization and accounting. You can use your existing authentication infrastructure (e.g. RSA SecurID, SafeNet), where Vaultize will act as a RADIUS client.

To enable RADIUS based authentication for the users, administrator needs to configure its parameters via the settings page. Once these RADIUS parameters are set, administrator can enable RADIUS based authentication for one or more Vaultize users through policy. If enabled, the user has to go through a two-step process at the time of login. The first step is to authenticate using password. When Vaultize password authentication is successful, user will be asked to enter his/her RADIUS token. Using this token, user will be authenticated against RADIUS server; Vaultize login will be successful only if the token is validated.

Vaultize MFA - Shared link access 

OTP can also be enabled for external or third-party recipients for shared link accesses and for opening of files secured through enterprise digital rights management. It can be enforced by the administrator or by the document owner. If enabled, after successful password authentication, the external user will also be asked for the OTP, which will be sent via email.

Vaultize rights management uses US patent-pending Micro-containerization technology, which is agnostic to file-formats and provides end-to-end file security. In this information centric approach to enterprise digital rights management, Vaultize embeds access rights in the document itself such that it is only usable by the authorized recipients in compliance with DRM-protection policies. Through this, access to shared documents can be controlled and permissions to open, view, download, print, copy-paste, forward and edit those documents can be managed (and even revoked). The shared documents can also be watermarked and can be given restricted access through web-based online document viewer.

Vaultize helps Fortune 500 companies, including those in security-conscious and regulated verticals ensure end-to-end file security, control and visibility of corporate sensitive data. The end-users get Dropbox-like user experience with the ability to access, edit and share documents from any device (including BYOD) from anywhere. Enterprise IT can choose between the flexible deployment options to deploy either on-premise (on a single server or a scalable private cloud) or use a hosted service from Vaultize public cloud (from Amazon Web Service (AWS) and Vaultize MSP partner data centers).

Vaultize's US patented technology Vault KNOX performs military-grade encryption of data together with de-duplication on user devices at the source itself, making it the most secure and efficient file sharing solution in the world. Vaultize's unique data containerization process provides unprecedented security down to the file level, liberating users form relying on third-party security protocols.

About Vaultize: 

Vaultize is an award-winning privately held company that provides enterprise file sharing, VPN-free secure anywhere access and mobile collaboration with DRM, MCM and policy-based endpoint backup. It has presence in 50+ countries - including the US, Europe, APAC, Middle East and Africa, through network of resellers, distributors, system integrators and MSPs. A free virtual appliance with 10-user perpetual license is available for download.

The popular use cases of Vaultize include Enterprise-Dropbox (Dropbox Alternative), FTP Replacement, Workspace Collaboration, Virtual Data Room (VDR), VPN-free access to file-servers/NAS and Endpoint Data Protection - everything with zero data leakage.

For further information, contact:

press@vaultize.com

US (+1-212-880-6412) | UK (+44-20-8133-6412) | India (+91-20-6720-4646)

Follow us on Vaultize Blog, Twitter, Facebook and LinkedIn .


SOURCE Vaultize