Free Newsletter
Register for our Free Newsletters
Zones
Access Control
Alarms
Biometrics
Detection
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
Surveillance
View All
Other Carouselweb publications
 
 
 
 
 
 
 
 
News

Shared username prevention for on-demand software

Aladdin Knowledge Systems : 14 January, 2009  (New Product)
HASP SEM SaaS Pass provides software-as-a-service providers with additional security measures for on-line service access
Aladdin Knowledge Systems has announced general availability of Aladdin HASP SRM SaaS Pass. Utilising Aladdin's award-winning HASP SRM solution, SaaS Pass allows on-demand software providers to maximise their revenue by preventing users from sharing their username and password with unauthorised individuals.

SaaS Pass allows login access to software-on-demand only from specific, pre-activated machines — ensuring the highest level of secure and controlled access to the hosted application and sensitive end-user data.

"The Software-as-a-Service (SaaS) model has grown tremendously in popularity as end-users enjoy the flexibility of subscription-based applications without the internal IT burden," said Mukul Krishna, global director of the digital media practice at Frost & Sullivan. "However, this also opens up a security loophole as user login information can be misused by being passed around or stolen. HASP SRM SaaS Pass will be very well received in the market as it closes such security holes and lets end-users and software vendors use SaaS applications in a highly secure environment."

The SaaS Pass solution is based on a small client application installed on the end-user's PC that communicates over the Internet with the service provider's Web application. The client application, which was pre-activated for the specific PC (using a HASP SRM software key), collects and passes the user name and password to the Web application for validation. To ensure the highest level of security, the user's password and a server-generated, time-stamp validation string, are encrypted using the HASP SRM AES 128-bit encryption engine, before they are sent to service provider's Web application. Integrating SaaS Pass requires minimum changes to the service provider's Web application, and supports any existing username database.

Aladdin provides two additional components to HASP SRM that enable the SaaS Pass functionality; the SaaS Pass Login Application and the SaaS Pass Web Service Module.

The login application, which service providers distribute to their customers, is fully customizable. All operations, including distribution and pre-activation of the login application, can be handled over the Internet to minimize logistics costs. The HASP SRM SaaS Pass Web Service Module integrates with the SaaS provider's existing Web application. As a standard Web service, the module interoperates with any server platform.

"Aladdin strives to provide the most comprehensive solutions available to meet the needs of our customers, enabling them to advance their business and grow revenues," said Laila Arad-Allan, vice president of the Software DRM Business Unit at Aladdin Knowledge Systems. "Many of our customers offering SaaS cite shared username/password login information as a significant source of revenue loss. By integrating HASP SRM into their SaaS offering, ISVs can reclaim lost revenues by ensuring that only authorized users on authorized machines access their on-demand applications and data."
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com