Overview

WinSecure TGS v. 3.1 is one part of the WinSecure Backend Server Series.  It enables you to issue and re-issue security tokens (smart cards, e-gate, fingerprint authentication tokens) used for security authentication with WinSecure Standard version 3.1 in a client PC. 

WinSecure TGS v. 3.1 works with multiple applications including Microsoft Active Directory, Lotus Notes, Novell e-Directory, digital certificate and regular logon information (network ID, password).  Because of this integration systems administration is simplified and economized.  If TGS is used with other WinSecure CGS (Certificate Generation Server), you can seamlessly link the user database with HR database.

Why TGS?

Hybrid cards are traditionally issued by outsourcing companies, and contact IC chips and non-contact IC chips are paved in the card and printed out in a separate process.  These procedures create discrepancies and take more time.  In addition to this process, the data to be written to the chip was managed separately and the workload to manage and synchronize the data was not trivial.  In recent years, Smart Cards are widely used for employee IDs or student IDs to control not only physical access, but also the information access to PCs and because of this, it is becoming more critical to issue/update the card in a timely manner.  From the security point of view, demand is increasing to protect the individual information in the card in a more secure but also cost-effective, convenient way.

Features:

WinSecure TGS provides the following solutions for your needs.

 Flexible Solutions

Bulk Token Issuance

Together with the card printer (model: SNI-DTC500S series), you can issue and print a large quantity of ID cards (employee IDs, student IDs) in color (one side/both sides).  You can issue and print contact smart cards,  non-contact smart cards, and hybrid cards.

　

Automatically Create Client Installer to establish private security

You can create your own private security system using WinSecure Standard v. 3.1 and creating a client installer.  Then, if someone were to store the exact same ID and password in a card purchased under a different WinSecure License, they can not be authenticated because the card is not embeded with the unique key you set up in the private security setting.

　

Integrated Security Token Management
(Smart Card, e-gate, Fingerprint Authentication Token)  

If users in a same organization or a company use mixed or multiple security tokens (Smart Card, e-gate, Fingerprint Authentication Token, or any combination of these), WinSecure TGS manages them in one unified database.

　

Update / Re-issuance of Security Tokens 

You can re-issue the security token easily in the event of lost, stolen or revoked password.  In a same manner, you can re-use the security token in the event of organizational or personnel changes.  By re-using tokens, significant cost reductions can be achieved.

　

Restrictions for User Data Change

WinSecure TGS can be configured to prohibit users from changing the data in the security tokens.  In this way, you can keep security standardized throughout the organization and reduce the help desk inquiries.

　

SSO (Single-Sign-On) Information Management

You can write Single-Sign-On data into the security token.  With WinSecure Standard, SSO does not require a special SSO server for company-wide management.  WinSecure can manage SSO data from a single PC up to an entire department or company.

　

License Management

As an optional feature, you can manage license information written in security tokens.  This feature helps to reduce costs since you can initialize the token and re-use it.  

　

 Security Solutions

Unauthorized Access Check Feature

WinSecure TGS v. 3.1 is designed not to start up with just one Administrator's smart card.  The Start-up Restriction Device required two Admin smart cards to be inserted to start and use the system.  This feature helps to prevent Administrator abuse.

　

Security Policy Setup at the Granule Level

It is very difficult to make unauthorized access to the data in security tokens (Smart Card, e-gate, fingerprint token).  However, normally it is not so difficult to access the token issuance server.  WinSecure TGS provides granule level security settings to prevent unauthorized access to avoid the risk of, for example, changing the security level clearance for a particular user or smart card.

　

Administrators Log

You can choose to store all activities of Administrators in a log file.  In the data process history screen, you can search the information by "Administrator ID", "Processed Data", "Processed Details", or "Processing Results".

　

Server Uniqueness

Security tokens issued from one TGS system can not be used for other systems.  By creating a unique key for each server, even If somebody were to create a token with the exact same ID and password as another WinSecure TGS system, that token can not be used for access.

　

 Expandability

With WinSecure UIS (User Interface Server), you can seamlessly link to an HR database, directory servers, Notes Domino, or CGS (Certificate Generation Server).  The system is flexible to meet the user data changes and organizational changes of your company.