CryptoCard BlackShield ID
February 01, 2009
£30 per user
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Nicely integrates into a Windows environment. Easy to manage once deployed
- Weaknesses: Not a lot, other than the complexity of the initial installation
- Verdict: Very strong solution with a lot of nice features, not a bad price
BlackShield ID is a web services-based strong authentication server providing integrated provisioning and management. It installs as an application inside IIS and tightly integrates with standard Microsoft server components, including IAS 2003, SQL 2005, Active Directory and Event Viewer.
It did require quite a few server-side dependencies, such as Microsoft IIS, ASP.net 2.0, .Net 2.0 Framework and Internet Authentication Service (IAS/2003). It took a couple of hours to load everything, but it was worth it because BlackShield ID was completely integrated without infrastructure, ie Active Directory, and required no additional schema modifications. The product shipped with a default database, PostgreSQL 8.3. Support for optional databases includes MS-SQL 2005, MySQL 5+ and Oracle 10g.
The entire BlackShield configuration is done post installation from a browser. The management interface was 'busy', but surprisingly easy to use. Both local and remote management is supported. The interface was so easy to use we were comfortable jumping right in, even before reading the admin and user guide.
We really liked the workflow automation, including the user self-enrolment features. Authentication agents for applications such as OWA, Remote Web Workplace, SharePoint, Citrix and others are included. There was support for a wide range of hardware, software and zero-footprint tokens (SMS) as well as OATH-compliant ones. The CryptoCard tokens can generate numeric, alphanumeric and complex passcodes.
Reporting and audit capabilities were great. Realtime activity monitoring, management-by-exception features for notifications when security polices are exceeded and standard built-in reporting were all very strong.
The product is enterprise-ready, with high performance scalability and high availability features.
Multiple support options are available as a fee-based option and include email and phone support for both 8/5 and 24/7. Documentation is very well done.
BlackShield delivers a lot of punch, but needs considerable work to roll out. Ongoing management is required but simplified, as discussed.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- The information security implications of M&A deals
- Cyber-security must reflect risk not just regulation
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success