Analytics
12/12/2012
01:51 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

NCP Engineering Releases Secure Enterprise Management Version 3.0

SEM 3.0 enables two-factor authentication with a one-time password

Mountain View, CA – December 11, 2012 – NCP engineering today announced the availability of a new version of its Secure Enterprise Management (SEM), software that streamlines the tasks of remote access to a few clicks. Built around the all-new NCP Advanced Authentication, SEM 3.0 enables powerful Two-Factor Authentication with a One-Time Password that users receive via SMS. Each password is created by a random number generator within the NCP Advanced Authentication Connector and is automatically canceled after use. This eliminates the need to use third party solutions and enables Two-Factor Authentication with only a mobile or smartphone.

Key Facts

· With the new NCP Advanced Authentication, SEM 3.0 elevates the security of the entire NCP Secure Enterprise Solution, which is comprised of a VPN client suite, hybrid IPsec/SSL VPN server and the remote access VPN management system.

· The NCP Secure Enterprise Solution is a 100% software solution developed from the ground up to be interoperable with all major network-layer security technologies, including VPN gateways and firewalls, preventing vendor-lock pitfalls. It also supports the broadest range of end device platforms, including Windows 8/7/Vista/XP, Windows Mobile/Phone, Android, Mac OS X, Mac iOS, BlackBerry, Symbian and Linux.

· As a centrally controlled solution, SEM 3.0 provides a single point of network administration for a company's entire IPsec and SSL VPN network, in addition to full Network Access Control (NAC) management. Administrators are able to provision and configure remote access capabilities to help prevent "bandwidth hogging" and wireless data consumption fees.

Resources

· For more about NCP engineering and its and its centrally managed enterprise VPN solution, visit www.ncp-e.com

· Reach NCP engineering on its blog, VPN Haus, LinkedIn, Twitter, or YouTube

Tags

NCP engineering, Security, Remote Access, IPsec, SSL, VPN, Hybrid VPN, Authentication, Advanced Authentication, Two-Factor Authentication, One-Time Password, the NCP Advanced Authentication Connector.

About NCP engineering

Since its inception in 1986, NCP engineering has delivered innovative software that allows enterprises to rethink their remote access, and overcome the complexities of creating, managing and maintaining secure network access for staff.

NCP's award-winning product line spans the spectrum of remote access, from IPsec / SSL VPNs to endpoint firewalls and network access control (NAC) functions. The company's products support organizations with complex remote user needs, and that want to leverage the latest end-devices to increase staff productivity, reduce network administration and adapt policy changes on-the-fly. Each solution is interoperable with existing third-party software or hardware.

With global headquarters in Nuremberg, Germany and North American headquarters in the San Francisco Bay Area, the company serves 35,000-plus customers worldwide throughout the healthcare, financial, education and government markets, as well as many Fortune 500 companies. NCP has established a network of national and regional technology, channel and OEM partners to serve its customers. For more information, visit www.ncp-e.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3341
Published: 2014-08-19
The SNMP module in Cisco NX-OS 7.0(3)N1(1) and earlier on Nexus 5000 and 6000 devices provides different error messages for invalid requests depending on whether the VLAN ID exists, which allows remote attackers to enumerate VLANs via a series of requests, aka Bug ID CSCup85616.

CVE-2014-3464
Published: 2014-08-19
The EJB invocation handler implementation in Red Hat JBossWS, as used in JBoss Enterprise Application Platform (EAP) 6.2.0 and 6.3.0, does not properly enforce the method level restrictions for outbound messages, which allows remote authenticated users to access otherwise restricted JAX-WS handlers ...

CVE-2014-3472
Published: 2014-08-19
The isCallerInRole function in SimpleSecurityManager in JBoss Application Server (AS) 7, as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 6.3.0, does not properly check caller roles, which allows remote authenticated users to bypass access restrictions via unspecified vectors.

CVE-2014-3490
Published: 2014-08-19
RESTEasy 2.3.1 before 2.3.8.SP2 and 3.x before 3.0.9, as used in Red Hat JBoss Enterprise Application Platform (EAP) 6.3.0, does not disable external entities when the resteasy.document.expand.entity.references parameter is set to false, which allows remote attackers to read arbitrary files and have...

CVE-2014-3504
Published: 2014-08-19
The (1) serf_ssl_cert_issuer, (2) serf_ssl_cert_subject, and (3) serf_ssl_cert_certificate functions in Serf 0.2.0 through 1.3.x before 1.3.7 does not properly handle a NUL byte in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Dark Reading continuing coverage of the Black Hat 2014 conference brings interviews and commentary to Dark Reading listeners.