StrongKey FIDO Server (SKFS) makes phishing-resistant passwordless authentication affordable for organizations of all sizes: it is the world’s only open-source, enterprise-grade, FIDO® Certified Server to eliminate passwords from web and mobile applications. SKFS functions as an identity provider (IDP) within a single sign-on environment that leverages SAML and/or JWT tokens for authorizing strongly authenticated users to web applications.
StrongKey Sign-On (SKSO) is a purpose-built web application designed to support the registration and management of FIDO credentials with SKFS, as well as inter-operate with Citrix ADC and Citrix Gateway for single sign-on to Citrix environments using SAML Assertions.
Combined, SKFS + SKSO eliminate passwords for Citrix/SAML environments delivering NIST AAL-3 authentication per NIST Special Publication 800-63 Digital Identity Guidelines without the need for Authenticator Apps.
StrongKey, the leader in open-source authentication and encryption solutions, has announced updated version 4.7 of the StrongKey FIDO Server (SKFS), which includes several new features. Most notably:
Out-of-the-box integration with Citrix Application Delivery Controller (ADC) and Citrix Gateway
Availability of SAML Assertions upon successful FIDO authentications
Authenticator agnostic: use any FIDO® Certified Authenticator you already own that supports the FIDO2 protocol, including those built into current laptops, desktops, tablets and smart phones.
"StrongKey is excited to be part of the Citrix Ready Partner Program, and is kicking off the relationship by bringing one of the strongest passwordless authentication technologies in the world to the Citrix ecosystem," says CTO Arshad Noor. According to the National Institute of Standards and Technology, FIDO authentication carries Authentication Assurance Level-3 (AAL3), the highest tier. Several introductory resources about FIDO can be found on the StrongKey blog.
The SKFS continues to add unique value by adding SAML support to its growing list of features:
The highest authentication assurance when used with the appropriate FIDO Authenticator: Authentication Assurance Level-3 (AAL-3) compliance
Policy module for enforcing security policy outside web/mobile applications
FIPS 140-2 Level-2 (standard) or Level-3 (optional) cryptographic hardware modules to protect SKFS from side-channel attacks
Easy integration for web/mobile applications via REST or SOAP web services -with lots of sample code to make it easier
Enterprise ready: High Availability/Disaster Recovery built in via clustered architecture at no additional cost
Transaction Confirmation for digitally signed business transactions for Android devices
Integration with LDAP or Active Directory
Integration with PKI
Advantages
The industry's strongest authentication protocol that completely eliminates password phishing attacks
Eliminates 3rd party SSO tools to lower costs and complexity within the application architecture
Eliminates man-in-the-middle (MITM) privacy compromises and liability
SKFS is available either as a free open source download to get proof of concept projects started today, or on enterprise servers which integrate cryptographic hardware for enhanced privacy and security.
For more information, please visit us at
www.strongkey.com or email us at
getsecure@strongkey.com.
