|
| SAFE
PIV Enrollment Manager
 Government agencies are geographically
dispersed with multiple and disjointed physical access
control systems (PACS), which are often stand-alone
along with multiple LDAP / HR directory systems where
the biggest challenge is to enroll PIV cardholder into
virtually any existing PACS. The PIV cardholder could
be an employee of that agency or could be a third party
such as a contractor or a visitor holding PIV card issued
by a different agency.
Quantum Secure’s PIV Enrollment Manager solves this
problem by automatically enrolling the PIV cardholder
into the existing diverse PACS based upon intelligent
policies and rules. These policies act as a guard against
fraud and foster real-time audit and compliance.
This approach enables flexible enrollment, validation,
and processing of individuals gaining temporary or long-term
access to a given facility.
Features:
 |
Allows organizations
to enroll FIPS 201-compliant credentials into their
PACS System
|
|
Works with numerous
existing PACS, supports multi-vendor PACS environments.
Also supports multiple LDAPs and other directory / HR
systems
|
|
Automates revocation
of access privileges to coincide with revocation of
the identity credentials (digital certificate)
|
|
Provides operational
efficiency and reduces administrative costs by centralizing
access control-related processes across an entire agency |
SAFE PIV Physical Identity Manager
Government agencies are geographically dispersed with
multiple and disjointed physical access control systems
(PACS), which are often stand-alone along with multiple
LDAP / directory systems. In certain cases, there is
a single IDMS system governing the identity of an employee.
Quantum Secure’s SAFE PIV Physical Identity Manager interoperates
with all HR / Directory and IDMS systems to provide
an end-to-end (IT/HR systems to physical access control
systems) Identity management regime. It enables security
managers to create processes and policies to grant,
manage, revoke, provision PIV cardholder and access
privileges even in an environment of disparate vendors
and technologies. Eliminating the use of manual processes,
emails and phone calls also eliminates vulnerabilities
across all strategic physical access points of an extended
enterprise, improving both security and cost efficiency.
The SAFE PIV Physical Identity Manager functions across
diverse physical security systems and enables tight
integration with IT systems such as Oracle Identity
Management, IBM Tivoli, HP, SUN IDM, Microsoft Active
Directory, Microsoft Identity Lifecycle Management,
including PeopleSoft HR, SAP HR, LDAP Directories, as
well as home-grown IT/workflow applications. The unique
policy-based approach allows creation of one identity
per individual and one provisioning process across all
physical locations and physical access control systems
even in a “multiple-silos” environment.
Features:
|
Automates configurations
in underlying disparate access control systems
|
|
Flexible, open-architecture
with support for hot-pluggable agents to manage disjointed,
multi-vendor PACS
|
|
Enables centralized
“Access Privileges” management
|
|
Role based, time
based access control rules across all physical security
systems
|
|
Workflow based centralized
cardholder identity and on-board/off-board process management
|
|
Permits access control
grants, revocation, modification and user entitlement
management across heterogeneous systems |
|
Tight integration
with IT security and identity management systems
|
|
Enables secure Web-based single sign on
|
|
Supports existing
corporate business processes and workflows
|
|
Centralized worldwide
auditing and real time reporting
|
|
Lowered cost of
compliance and operations. Simplifies ongoing systems
administration |
SAFE PIV Self-Service Access Manager
Reduce the administrative burden of requesting, approving,
entering, updating and deleting PIV cardholder information
across all your physical access control systems when
cross site access is required. Through an intuitive,
easy-to-use Web-based portal, the SAFE PIV Self-Service Access
Manager delivers a request and approval vehicle right
to users' fingertips. The SAFE PIV Self-Service Access Manager
provides a graphical user interface for making physical
access requests and automatically invokes global rules
and policies to get appropriate approvals, bind system
specific access privileges and in real time, provisions
the user in the physical access control system, regardless
of the brand or type. The SAFE PIV Self-Service Manager
ensures that once a request has been submitted or approved
there is NO manual intervention required and that changes
are made based upon deployed policies. SAFE’s
delegated administration allows an administrator to
manage and self-service physical accesses for a group
of people or a department.
For example, let's consider a visitor in any agency (holding
either a PIV card or a regular temporary badge) making the
required arrangements for approval prior to gaining
access to the facility. Either the visitor, using SAFE’s
Web-based portal, or the internal sponsor (an employee), using
the same Web-based portal initiates the request for allowing
a visitor to enter the facility for a certain time.
The internal sponsor fills out the required sponsorship
form in the SAFE Web-based system and SAFE then automatically
routes that form for an approval. The Approver “approves
or denies” the request via the click of a button. Assuming
the request has been approved, SAFE system automatically
sends all the information of the visitor to the staging
area, waiting for the visitor to show up at the designated
lobby. Once the visitor shows up at the lobby, the visitor
inserts his PIV card into the SAFE PIV Enrollment Manager.
The PIV Enrollment Manager reads the card details, checks
the staging area for a match, verifies the digital certificate
associated with the card and then based upon intelligent
policies/rules, provisions the visitor into the existing
PACS for the specified duration of time as was requested
by the sponsor.
Features:
|
Full automation
with all physical access control brands, enabling a
user friendly environment for gaining cross-site access
throughout the enterprise
|
|
Customizable-, granular-
and entity-level delegated administration
|
|
Independent management
of physical access privileges by employees and contractors
under one policy paradigm
|
|
Full-feature functionality
to enable delegated administration for requesting access
privileges
|
|
Elimination of human
errors caused by manual processes
|
|
Ongoing maintenance
of updated and compliant data and access levels
|
|
Streamlined operations
with lower costs
|
|
Increased employee
productivity
|
|
Easy installation
and maintenance
|
|
Rapid return on
your technology investment
|
|
Full integration
with underlying physical access control systems and
HR/Directory systems such as LDAP, ActivDirectory, SAP,
PeopleSoft, IBM/Oracle/SUN/HP Identity Management
Systems, etc.
|
|
Centralized, secure
management of access rights and centralized audit logs |
SAFE PIV Security Reporter
The SAFE PIV Security Reporter provides useful reports and
dashboards covering operational and management information
your security department can use on a daily, weekly
and monthly basis. The SAFE Custom Report Wizard tool helps
you create customized reports online and receive immediate
results in a secure manner.
The SAFE PIV Security Reporter includes complete suite
of easy-to-use for reporting, analysis and FIPS 201-compliance
related audit needs of government agencies with a full
line of decision support tools accessible within a single
interface. For example, Dashboard offers executive/operational
dashboards, Web-based reports, parameterized reports, analytics,
and ad-hoc query. The SAFE Security Reporter engine includes
the mySAFE Dashboard module, which correlates data from
SAFE and non-SAFE systems including network and IT sources,
provides vulnerability scans against PACS configuration
changes, supplies global alerts captured from various
RSS news feeds and prioritizes security threats. The mySAFE
Security Dashboard can be personalized to each user's
needs and can be extended to a wide range of mobile
devices and PDAs.
SAFE Physical Security Event Manager
The SAFE Physical Security Event Manager is an enterprise-level,
next-generation command and control solution that enables
security teams to detect, analyze and respond to incidents
in real-time. SAFE Physical Security Event Manager is
the first of its breed to integrate data from existing
security systems and sensors to deploy security policies
for comprehensive incident intelligence, and response
automation.
The SAFE Physical Security Event Manager is an out-of-the-box,
COTS solution that enables quick deployment with minimal
customization, reducing future support costs. The flexible
framework provides a foundation for future video analytics
to track and search people across multiple cameras.
|
