JaCarta WebPass

JaCarta WebPass Is a USB token with a one-time password for two-factor authentication of users when accessing protected information resources using a one-time password, or a token stored in a reusable password.

• Generating one-time passwords
• Generation and secure storage of complex, reusable passwords
• Automatic password substitution in the fields of screen forms
• Protected storage of Web resource addresses and launching a Web browser with a transition to a saved address
• Storage of cryptocontainers for software CKI
• Full compatibility with classic OTP tokens (eToken PASS, eToken NG-OTP, etc.), according to RFC 4226

Solved problems

• Strengthen password authentication of users when accessing information resources by switching from memorized to one-time passwords. The use of one-time passwords solves such problems of password compromise, as interception of data entered by the user from the keyboard, stealing of remembered passwords, "peeping from behind", etc.
• Strengthen password authentication of users when accessing information resources by switching to two-factor authentication using a token. A token-generated one-time password can be used in conjunction with a memorized password.
• Eliminate users from having to remember complex passwords. Passwords are generated and stored in a token.
• Eliminate users from possible errors that occur when you manually enter passwords and web resource addresses. Passwords are automatically inserted into the input forms when the button is clicked. Starting the web browser and going to the saved address are also performed when the button is clicked.

Functionality of JaCarta WebPass:

• Generation of up to three independent one-time passwords (one-time, two-time or long pressing of a button).
• Support for four different algorithms for generating one-time passwords (algorithms for generating OTP by event, according to RFC 4226).
• Generation and secure storage of up to three reusable passwords of the required level of complexity (for a single, double or long press of a button).
• Secure storage of up to three Web resource addresses, launching a Web browser and navigating to a saved address at the click of a button (for a single, double or long press of a button).
• Generating passwords and storing addresses of Web resources is performed in a secure smart card chip on the board of the token.

Key features of JaCarta WebPass:

• A mechanical button for generating passwords, launching a Web browser and confirming the presence of a person behind the PC.
• Automatic password substitution in the fields of the screen forms at the push of a button.
• Two-chip design:
• Microcontroller, responsible for communication with the PC, interaction with the user and acting as a firewall for APDU commands;
• A smart card that implements security functions (generation of one-time passwords, generation and storage of a multiple-use password).
• Support for HID, CCID interfaces with the ability to simultaneously use both interfaces and switch between them during operation.
• The token can be used on any device equipped with a USB port Type A Female and allowing the use of USB keyboards.
• No internal batteries - powered by a USB port.
• Support for any OS Microsoft Windows, Linux, Mac OS X, Google Android, Apple iOS (via Camera Connection Kit).
• To use the token, no additional drivers and software are required (one-time passwords are entered via the HID interface).
• Support for the token in centralized management and accounting systems - JaCarta Management System (JMS), SafeNet Authentication Manager (SAM), Token Management System (TMS).
• The server software for checking OTP: JaCarta Authentication Service (JAS), SafeNet Authentication Manager (SAM), SafeNet Authentication Manager Express, SafeNet Authentication Engine, LinOTP, FreeRADIUS, etc.
• One token can be used to access several different resources (one-to-many).