V-FRONT

Integrated Authentication Platform + Multi-Factor Authentication

V-FRONT implements additional authentication during the login of web server, VPN, VDI, and network equipment (Telnet).
It is an “Stronger Multi-Factor Authentication Solution” that implements OTP, Push, PKI, etc., on an existing ID base.

It can be implemented using the basic RADIUS Protocol, and the implementation of additional authentication is available on various solutions, including web server, by providing standard API.

Needs

• The system cannot accurately judge if it is an “actually” authorized user when one-factor authentication is used as ID.
• Another authentication that only a user knows or has (biometric authentication) is required. (The need for additional authentication is on the rise.)

Effect

VPN, VDI, web server, network equipment (Telnet login) two-factor/two-channel authentication strengthening solution

Configuration

V-FRONT product configuration

Classification	V-FRONT Configuration
Classification	Item	Product Name	Standard
Contents	Contents Item Integrated additional authentication (server)	V-FRONT	• Perform additional authentication simultaneously • Provide standard Web API • Provide the OTP key issue function • Provide the SMS interlock function • Provide the e-mail interlock function
	Web Server	User Portal	• Automate user registration and revision – Send a mail according to the period of use and the elapsed period – Function to select additional authentication methods (OTP, Push, etc.) • App distribution system – by device (Android, IOS, etc.) • Aircuve Mobile Provision – Verify terminal device information, ID, and activation code value – Activate the additional authentication function
	Mobile APP(OTP, Push)	Aircuve Mobile	• Provide mobile OTP, single Push application • Support Android and iOS
	Card OTP(hardware token)	Aircuve Smart OTP	• OTP card (one button, Non NFC chip) • Battery guarantee term: three years (20,000 times) • Time sync method

Features

· V-FRONT
· HDD : 1 TB or higher
· CPU : 1 CPU 3.1 GHz or higher
· RAM : 4 GB or higher
· Duplex configuration
· Use the safe crypto communication protocol
· Perform the 1st and 2nd authentication simultaneously
· Integrated account management is available.
· Provide functions to manage and control a dormant account
· Additional authentication user registration and use are available in Korea and overseas
· Provide API that can respond to various interworking platforms (VPN, VDI, server access control, account management, web server, network equipment, etc.)
· Support authentication for the mobile OS of Android and iOS
· Provide alternative methods when OTP authentication is unavailable (web OTP, SMS, e-mail, etc.)
· Provide periodical reports for the current usage status and access statistics (export function)
· Provide periodical reports for the current usage status and access statistics (export function)
· Provide a function to defend web vulnerability against attacks including XSS, SQL injection, etc.
· Provide the provisioning function to identify mobile terminal devices (mobile terminal device provisioning using QR code)
· Provide wizard provisioning for user convenience
· Provide the 2nd authentication function in the change of user information and OTP alternative means
· Provide the setting function of usage period by a user
· Provide the inquiry function of OTP issue history
· Provide the setting function of app password
· Distribution through the App Store and the Play Store is available.
· Authentication only by the registered user and terminal device is available.
· Support time-based OTP
· Support terminal device registration and change automation through the user portal
· Encode and save terminal device information
· Provide the forced termination function of rooting while an application is running
· Support mobile OTP
· Support VPN using the Push function and web server login
· Support the card-type OTP token (user self-registration function)