NetSignOn Version 2.0

 
PROJECT ID
C027
ASSURANCE LEVEL
EAL1
Security Target (ST)
 
Certification Report (CR)
 
PRODUCT NAME AND VERSION
NetSignOn Version 2.0
PRODUCT TYPE
Client agent runs on Windows operating system platforms that leverages multifactor user authentication methods.
PRODUCT SPONSOR / DEVELOPER

MagnaQuest Solutions Sdn. Bhd

PRODUCT SPONSOR / DEVELOPER CONTACT DETAILS

Ramdas Nemani

A-2-07 & A-2-09
SME Technopreneur Centre1,
2270 Jalan Usahawan 2,
63000 Cyberjaya, Selangor DE,
MALAYSIA

URL: http://www.magnaquest.com
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.
Phone: +60 (3) 8318 2964
Fax: +60 (3) 8319 2534

MQAssureTM NetSignOn Version 2.0 (hereafter referred as NSO) is a client agent that integrates with Windows operating system platforms of the desktop and laptops. It leverages multiple authentication methods such as MyKAD, biometric, USB token, and userid/password to perform the login functionality to a system in a Domain (network connected mode and network disconnected mode).

NSO is utilising MQAssureTM/AppShield v1.2_CR6 Integrated with MQAssureTM IAM v1.0_CR6 (IAM), a centralized identity and access management platform. It provides the backbone for the NSO by providing centralized policy management (part of IM), session management and audit logging (part of AM). In the overall infrastructure, NSO acts as a policy enforcement agent for workstations. IAM provides a centralized administration console through which the administrators can create and enforce various policies to control the authentication schemes to workstations in a domain. IAM consists of the following modules:

  • MQAssureTM Access Manager (AM) that is partially in scope of the TOE, which is where the run-time (real-time) checks are performed during the authentication phase.
  • MQAssureTM Identity Manager (IM) is enforcing the authentication policy and reports viewing function which is within the scope of the TOE. Additionally, only Self-help function for TOE users is within the scope of the TOE.

The security functions that the TOE provides include the following:

  • User data protection – Users are required to login using the combination of multiple authentication methods.
  • Identification and Authentication – Users must be identified and authenticated before access to relevant resources is allowed.
  • Security Management – The TOE contains various management functions to ensure efficient and secure management of the TOE such as user management and changing passwords.