CryptoCard takes the pain out of passwords

System eases administration tasks and supports portable devices

Seat belts won’t save lives if you don’t use them. Likewise, network security systems won’t be secure if employees tape their passwords to keyboards.

Flexibility and convenience are essential for an effective security system. Those qualities are the biggest selling points of CryptoCard’s authentication system.

We last looked at the CryptoCard system a couple of years ago. At that time, we found it to be an inexpensive and easy-to-implement authentication system that offers an unusual degree of platform flexibility. Those judgments stand.

Crypto-Server 6.4 relies on two authentication factors: tokens and personal identification numbers. One major advantage of Crypto-Server is that it supports many different tokens. Administrators can assign users smart cards, a credit card-sized keypad, a keychain token or a USB dongle. In addition, you can assign a software token, which is especially useful for connecting personal digital assistants. Be aware that employees can only use software tokens to access the network through specified desktop clients.

Because the system controls network access via a token that generates a random password everytime a user logs on, users aren’t under pressure to change passwords. And administrators can rest assured that no one can intercept passwords during transmission over the network. Instead, users confirm the PIN on a specific device without transmitting it to the CryptoCard server.

Crypto-Server can integrate with other resources. Available software lets administrators extend Crypto-Server’s use to controlling access to local-area networks, virtual private networks, Web servers and other security systems.

We were especially impressed by Crypto-Server’s support for several operating systems. It supports Microsoft’s Windows 2000 Service Pack 4 and 2003 Service Pack 1 servers, in addition to Red Hat’s Enterprise Linux, Novell’s Suse Linux Enterprise and Apple Computer’s Macintosh OS X Tiger servers. Crypto-Server integrates with Microsoft Active Directory, Lightweight Directory Access Protocol and Open Directory for user data storage and works with all the major remote access servers.

In the past two years, developers have significantly enhanced Crypto-Server in several areas, especially ease of administration and support for portable devices.

We found the system much easier to set up on the client and the server, and the new CryptoCard Console, the system’s administrative module, is an easy-to-use utility for managing tokens.

We also like Crypto-Server’s new support for disconnected laptop computers. When your laptop is off-line, it is still protected by Crypto-Server authentication. Someone can perform as many as 100 log-ons before needing to reconnect to the CryptoCard server.

CryptoCard has also made it easier for those who need to provide static passwords to access the network. Administrators can configure the Crypto-Server log-on procedure to automatically perform static operating system log-ons after authentication by the CryptoCard server.

Finally, Crypto-Server has added support for software tokens for Research in Motion BlackBerry mobile devices, which means BlackBerry users can access the network without the need of a separate token.

Our only major gripe is that there is a need for products such as Crypto-Server. In a perfect world, we wouldn’t need to spend time and money securing our networks. In the meantime, Crypto-Server offers a surprisingly simple and convenient solution for end users.

Cryto-Server 6.4CryptoCard
(800) 307-7042

Pricing: Crypto-Server 6.4 pricing starts at $100 per user. Volume discounts are available.

Pros: It’s easy to manage and supports a variety of tokens and platforms. Users don’t need to change passwords.

Cons: It has no significant drawbacks.

FCW in Print

In the latest issue: Looking back on three decades of big stories in federal IT.


  • Anne Rung -- Commerce Department Photo

    Exit interview with Anne Rung

    The government's departing top acquisition official said she leaves behind a solid foundation on which to build more effective and efficient federal IT.

  • Charles Phalen

    Administration appoints first head of NBIB

    The National Background Investigations Bureau announced the appointment of its first director as the agency prepares to take over processing government background checks.

  • Sen. James Lankford (R-Okla.)

    Senator: Rigid hiring process pushes millennials from federal work

    Sen. James Lankford (R-Okla.) said agencies are missing out on younger workers because of the government's rigidity, particularly its protracted hiring process.

  • FCW @ 30 GPS

    FCW @ 30

    Since 1987, FCW has covered it all -- the major contracts, the disruptive technologies, the picayune scandals and the many, many people who make federal IT function. Here's a look back at six of the most significant stories.

  • Shutterstock image.

    A 'minibus' appropriations package could be in the cards

    A short-term funding bill is expected by Sept. 30 to keep the federal government operating through early December, but after that the options get more complicated.

  • Defense Secretary Ash Carter speaks at the TechCrunch Disrupt conference in San Francisco

    DOD launches new tech hub in Austin

    The DOD is opening a new Defense Innovation Unit Experimental office in Austin, Texas, while Congress debates legislation that could defund DIUx.

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group