Cryptocard Blackshield Cloud

Powered by SC Magazine

BlackShield Cloud is designed to be simple to deploy and capable of slotting in neatly with a company's workflow processes.


At its foundation it redirects user login requests from authentication devices and applications to its own secure servers and permits access to network resources only when the correct credentials have been provided. Cryptocard supports most authentication devices and essentially takes over the RADIUS authentication process. It requires the device to be reconfigured to relay incoming user login requests to its cloud-based servers.

The latest version has sharp focus on service providers, and one of many new features is its delegated management. to make Blackshield Cloud a commodity service. A key scenario would be where a service provider wants to supply 2FA services but be able to have another company manage them.

Multi-tier management is another new feature which is also aimed at resellers and service providers, and allows them to add value by delivering 2FA services to customers from within their own account. This feature also allows parent companies to easily integrate new acquisitions into their existing 2FA model.

Support for Active Directory is provided with an LDAP agent that can upload user lists to the Blackshield Cloud servers. Security concerns are dealt with by the agent as it avoids exposing the LDAP server to the internet by acting as a buffer between it and the Blackshield Cloud servers.

An enhanced agent is now available which adds support for OpenLDAP, SQL and Oracle databases that store lists of user details. It provides LDAP auto-provisioning so as new users are added to a group, the agent sends their information to the Cryptocard servers which apply predefined rules to send users the appropriate token.

Companies can move away from existing token-based 2FA products in a controlled manner with the Blackshield Cloud migration agent. This supports their continued use as the agent forwards requests onto the token server until you choose to revoke them or they have expired, so allowing a phased migration to the Cryptocard service.

An additional migration feature now allows RSA users to import their token details into the Cryptocard service. This takes over RSA on-site management services, and as RSA tokens expire they can be replaced with Cryptocard tokens. Deployment is managed by the chosen Cryptocard channel partner and their service can include on-site support if required. You have two options for hardware tokens and you can purchase them for a one-off cost or lease them. Typical hardware tokens supported include keychain or credit-card varieties.

The administrative portal has been redesigned to make it easier to use, and the customer sign-up processes have been simplified. The portal provides all the facilities for managing users and tokens, and you can use pools for simplifying token and serial number management.

Along with plenty of standard hardware and software tokens, Cryptocard supports SMS where one-time passwords are delivered to a user's mobile. It can integrate with existing SMS gateways and provides tools for branding SMS messages and emails with logos.

Copyright © SC Magazine, UK edition

Cryptocard Blackshield Cloud
Overall Rating
A sophisticated cloud based two-factor authentication service that’s easy to deploy and manage and a lot better value that trying to do it all yourself
Product Info
Top Stories
Myer CIO named retailer's new chief executive
Richard Umbers to lead data-driven retail strategy.
Empty terminals and mountains of data
Qantas CIO Luc Hennekens says no-one is safe from digital disruption.
BoQ takes $10m hit on Salesforce CRM
Regulatory hurdles end cloud pilot.
Sign up to receive iTnews email bulletins
Latest Comments
Who do you trust most to protect your private data?

   |   View results
Your bank
Your insurance company
A technology company (Google, Facebook et al)
Your telco, ISP or utility
A retailer (Coles, Woolworths et al)
A Federal Government agency (ATO, Centrelink etc)
An Australian law enforcement agency (AFP, ASIO et al)
A State Government agency (Health dept, etc)

Do you support the abolition of the Office of the Information Commissioner?

   |   View results
I support shutting down the OAIC.
I DON'T support shutting the OAIC.