Secure VPN authentication with one-time passwords

Many companies use virtual private networks (VPNs) to provide remote access to the company network for employees working from home offices.

With the increasing frequency of Internet crime, the static passwords used for VPNs are no longer sufficient to ensure users have been correctly identified and are authorized to access the network. Key logging software, for instance, is able to record keyboard inputs, consequently compromising passwords and configuration data. In addition, former employees often still have access to company data long after their last day at work.

Teldat provides a secure and powerful VPN solution for connecting mobile employees to the company network. Teldats Secure IPSec Client™ provides encrypted VPN IPSec connections to bintec VPN gateways for employees working from home offices. Companies can further enhance security by using one-time passwords (OTPs).

One-time password servers such as Kobil’s SecOVID® and RSA’s SecurID® are easy to integrate into Teldat systems thanks to their support for the standardized RADIUS protocol. OTPs provide additional protection against key loggers and other malware, ensuring maximum security. Employees are issued a token device that dynamically generates one-time passwords at regular intervals, such as every 30 seconds. The token is protected against theft by a separate PIN. By deactivating this electronic key on the employee‘s last day at work, access to the company network is automatically blocked, regardless of when the user is actually removed from the VPN gateway.