Cloud-Based Identity Services

Transcription

1 Cloud-Based Identity Services TrustX Technologies, Inc Random Hills Rd., Suite 650 Fairfax, VA 22030

2 TrustX Identity Services Affordable Identity Assurance TrustX is a cloud-based implementation of IdentityX s award winning identity assurance technology. It delivers the features and benefits of IdentityX in a secure, easily consumed and economical hosted service model. TrustX is ideally suited to any organization that has need for strong authentication (including biometrics), but, does not desire to stand-up, operate and maintain an on-premise solution. Our TrustX service was developed in accordance with the guiding principles of the National Strategy for Trusted Identities in Cyberspace (NSTIC) initiative: Secure and Resilient Privacy Enhancing Interoperable Cost Effective and Easy to Use TrustX Service Model 2

3 Flexibility TrustX was designed to provide Relying Parties the highest degree of flexibility possible in a multi-tenant, hosted environment. Multiple Trust Frameworks TrustX supports integration via: SAML2 (conformant to the Kantara Initiative) OpenID Connect IdentityX Proprietary Interface FICAM compliant Configurable Authentication Policies Relying Parties control which authentication factors to apply to transactions and can step up authentication to add additional factors for transactions involving higher risk. Authentication factors supported include: Device Possession (certificate based) PIN Face Voice Geolocation Federated and Non-Federated Models TrustX was designed as an integral component of the NSTIC Ecosystem supporting federated identity across a large segment of subscribers and relying parties. In this model, Subscribers can use the same credential with any participating Relying Party that chooses to accept it. However, TrustX performs equally well in a situation where a direct one-to-one relationship exists between subscriber and Relying Party and the associated credential is not shared outside the Relying Party organization. Privacy TrustX protects the privacy of Subscriber and Relying Party information. Our service has been subjected to independent audit of industry recognized privacy experts at Purdue University. We collect and maintain the minimum amount of Personally Identifiable Information (PII) needed to authenticate Subscribers to the RP. This information is never shared with any other organization or entity, except as required to deliver the Service. 3

4 TrustX is a multi-tenant environment where common infrastructure is used to support authentication of Subscribers to multiple Relying Parties. However, great precautions have been taken to ensure the total separation of RP data to ensure the privacy, security and integrity of RP and Subscriber information. Typical Usage Scenario 1. Subject tries to access a protected resource, account or transaction 2. RP sends authentication request to TrustX 3. TrustX authenticates the Subject via their mobile device and in accordance with RP policies for the type/level of access required 4. TrustX passes authentication response to RP 5. RP grants access to the resource, account or transaction 4

5 About TrustX and IdentityX Inc. TrustX is a wholly-owned subsidiary of IdentityX that provides hosted identity services based on IdentityX technology. IdentityX Inc. is an affiliate of Daon, a leading provider of identity assurance software products focused on meeting the needs of governments and commercial organizations worldwide. Daon supports customers and system integrators in building enterprise solutions requiring the highest level of security, performance, scalability, reliability and privacy. Daon s multi-modal authentication infrastructure, DaonEngine, integrates seamlessly with IT platforms and applications and manages the identity life-cycle of small and large populations. Daon s COTS products are scalable, flexible and proven in the most challenging real-world environments. Daon has been selected to secure more than 750 million identities around the globe, including providing the core backend platform for the Indian Unique ID (UID) project, which involves a multi-modal solution as part of the largest biometric initiative in the world. The Daon product suite covers every aspect of identity management from pre-enrollment and identity proofing to enrollment, multimodal capture, adjudication, credentialing and provisioning. Daon s offices are located in Washington DC, Canberra, and Dublin. For further information on IdentityX Inc., or to request a demo of IdentityX, please visit The X-Family of Companies Affiliate Application Identity Solutions for in- person applications: border control, national ID, law enforcement, immigration, trusted traveler Identity solutions for on- line and mobile applications 3 rd party identity solutions based on IdentityX Technology Cloud- based Identity Services based on IdentityX 5