RightStar’s PKI Solution

By Dick Stark

You arrive at work to begin the day and logon to Windows using your CAC card.  But before you can get into Remedy you enter a password and hope that password didn’t change the day before.  Later, you attempt to log into the BMC Dashboard and Analytics program but have forgotten that password.  Finally, access to an HP server is thwarted when your third password attempt fails.

Sound familiar?  Although the federal government has made great progress in standardizing on security, access controls, security credentials, and password management, significant policy differences still exist among agencies.  For example, the DOD requires CAC or Common Access Cards also known as Personal Identity Verification (PIV) to gain access to facilities and computer systems. Civilian agencies, however, have been slower to follow suit.

The good news is that this is all spelled out in the Federal Identity, Credential, and Access Management (FICAM) Roadmap.  This GSA document and task force mission is to “foster effective ICAM policies and enable trust across organizational, operational, physical, and network boundaries.” That roadmap lays out the intersection of digital identities (and associated attributes), credentials (including PKI, PIV, and other authentication tokens), and access control into one comprehensive management approach.

Even better news is that RightStar is already helping federal agencies authenticate and access BMC ITSM software applications such as Remedy in a single sign-on approach. RightStar’s PKI Connector (RPC) is a simplified Logical Access Control System that provides Public Key Infrastructure (PKI) based authentication to various enterprise applications.

How does RPC work? Basically, PKI cryptography allows two parties to communicate with each other using keys (large numbers), a hashing algorithm, and a digital certificate to confirm the identity of the user, server, or organization. When installed, RightStar’s RPC intercepts the system’s password request and validates the certificate information from the PKI certificate associated with the user’s PIV card. Then it validates the credentials against that application’s certificate. After that, it authenticates the user to the application and authorizes the login.

More simply put, the RightStar RPC provides single-sign on, eliminating the need for multiple passwords and user IDs. This is a “lightweight” application meaning that it does not require a “fat” agent and extensive development. Today RPC works with BMC ITSM products but due to the pluggable nature of the application, new client plug-ins can be created with minimal effort.  Additionally, RPC works on multiple platforms out of the box and does not require any client installation.  The ROI is immediate.  No longer do users have to fumble with separate IDs and passwords, and users are granted entry in a more secure manner.

Advertisements

About dick1stark

I am the President, CEO, and founder of RightStar Systems, a leading IT consultancy and BMC Software Solution Provider and Atlassian Expert Partner. My passion is customer success—whether it’s reducing the cost of service management, improving overall efficiency, or increasing end-user or employee satisfaction. Since founding RightStar in 2003, RightStar has made the INC 5000 list four times. In 2011, RightStar was awarded the prestigious National Capital Business Ethics Award (NCBEA) by the Society of Financial Service Professionals based upon RightStar’s foundation of honesty, ethics, and integrity. And in 2014, RightStar was selected by Forrester Research as one of 13 North American companies profiled in its ITSM Consultancy Wave Report. Finally, in 2016, BMC selected RightStar as its 2015 Supplier of the Year for its consulting partnership and excellence in service delivery. Dick is a graduate of Stanford University and a Project Management Professional (PMP).
This entry was posted in BMC, ITSM, Remedy and tagged , , , , . Bookmark the permalink.

One Response to RightStar’s PKI Solution

  1. Judy says:

    May I simply just say what a comfort to uncover someone that actually
    knows what they’re discussing over the internet. You certainly realize how to bring an issue to light and make it important. More and more people should look at this and understand this side of your story. I can’t believe you’re not more popular given that you certainly have the gift.

    Judy

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s