SurePassID MFA Server
Surepassid Corp
SurePassID MFA Server
Surepassid Corp
SurePassID MFA Server
Surepassid Corp
Advanced, deploy-anywhere MFA for IT/OT and critical infrastructure
SUREPASSID OVERVIEW
SurePassID is an advanced, deploy-anywhere multi-factor authentication (MFA) platform for information technology (IT), operational technology (OT), and critical infrastructure environments. Multitenant-capable and backed by unmatched technical support, SurePassID can be deployed as a universal MFA solution or a point solution that interoperates with existing identity and access management (IAM) solutions. SurePassID fully supports phishing-resistant FIDO2/WebAuthn passkeys for PIN-based, biometric-based, and fully passwordless user authentication; traditional OATH time-based and event-based one-time-passcode (OTP) tokens for mobile/device/email OTP, SMS OTP, IVR OTP; and mobile push authentication. Security features include the industry’s most comprehensive logging and audit trail, secure user and token provisioning methods, a secure software bill of materials (SBOM), AES 256/TDE/SHA 256-512 encryption, FIPS 140 compliance, support for managed hardware security modules (HSM) such as Microsoft Azure Key Vault, and more. At a fraction of the cost of traditional on-premise solutions, SurePassID is both simple to install and administer, with configurable degrees of automation. The result is a right-sized, right-priced solution for every IT, OT, and operational technology need.
"CLOUD-GAPPED" MFA
FOR CUSTOMERS THAT NEED HIGHLY SECURE MFA AT SCALE
SurePassID's “cloud-gapped” MFA solution is an Infrastructure-as-Code implementation that automatically builds an entire, fully hardened, and regionally or globally replicated SurePassID instance in Microsoft Azure GCC or GCC High. The result is "pay for what you use" multi-factor authentication with revolutionary automation, scalability, and availability. This solution automatically leverages the entire Azure component stack:
- Microsoft Datacenters are used for fault tolerance to support Geo Load Balancing (East, West, Common).
- Azure Traffic Manager facilitates the traffic routing.
- Azure Key Vaults secure all secrets and SSL certs.
- Azure SQL Database is used both primary and replicated secondary storage.
- Azure Application Gateways and Azure Web Application Firewalls are used for inbound traffic both externally and internally and to limit certain traffic (like mobile provisioning/push verification currently done with F5)
- Azure Virtual Networks, subnets, private links and network security groups are used to secure and partition components.
- Azure App Services (SurePassID) are defined in various regions and the apps themselves are load balanced and use dynamic thread scaling (up/down) to handle dynamic request loads.
VIRTUAL MACHINE MFA SERVER
FOR CUSTOMERS THAT NEED A TURNKEY SOLUTION FOR ON-PREMISE DEPLOYMENTS
The SurePassID MFA platform can be quickly and easily installed as a Hyper-V virtual machine to deliver advanced, deploy-anywhere MFA for a range of on-premise requirements. This puts the power of SurePassID's highly extensible, scalable, available, and secure MFA into any enterprise seeking a point solution or need to lock down their most valuable data, applications, and environments.