Understanding Cipherise for the CISO & CIO
The Board: By minimising the attack vector on any business to something so small as one user on one system, it means all businesses can manage that type of breach. In such an event, you have significantly reduced exposure cost, reputational damage, and time to resolution.
The Executive: Cipherise is a decentralised system. It takes away the care, responsibilities, and risks associated to passwords. With Cipherise, there is no master password, it’s easy to use, and stores no personally identifiable information – anywhere. There are no credentials for a threat actor to compromise. We also integrate with over 5,000 systems that use SAML such as 0365, Google Workforce, Salesforce, and radius servers for all our unix friends with service accounts.
The User: Simplicity for the user experience is key. Using the Cipherise security library, you embed an alternative login process where they never get a username and password to lose or worry about, and it’s all branded and contained in your organisation’s look and feel. We enhance the trust in your brand that you have already worked hard to build.
Managed Security Service: The Cipherise service is designed to be white-labelled and has distributors utilising it as a Managed Security Service model. Our support and installation guides are public for end users, behind Cipherise for installations. Yes, we’ve created the next generation in securing environments with thousands of enterprise users. For those more technically minded, Cipherise enterprise solution utilises Usernameless and Passwordless authentication, single sign on simplicity, unified identity and access management and triple patented incremental security.
Cipherise solves the “prove to me” paradigm of interacting with parties.
Passwordless
Cipherise replaces the dependency on matched secrets with highly complex and unique cryptographic entanglements that Cipherise obfuscates from the end user. Cipherise is not a passwordless experience (like many other "passwordless" technologies).
Usernameless
Cipherise does not accept any credential information supplied to it. Cipherise requires the completion of a mutual cryptographic proof to show that you are not just entitled to use a service but intend to do so.
Mutual, Continual, Zero Trust
Whether at your desk, at home, or out on the road, Cipherise assumes the possibility that everything is compromised. Consequently, every action executed by Cipherise rechecks all parties to ensure non-repudiation and generates an air-gapped forensic log.
Cipherise Mobile Application
- Ensure every interaction is similar
- Ensure every interaction is branded with your organisational look and feel
- Ensure every action is secure
- Ensure the right level of friction is imposed on the user to match the importance of the action
- Provide a universal key experience where the user no longer needs to know or remember any usernames, passwords, or perform any traditional multi-factor process
Cipherise Services Portal
The Cipherise Services Portal is an employee facing place where your company can publish every system an employee needs to perform their work.
Providing a set of tiles that can be unique per group/user type, it allows you to bring together:
- Cloud services
- Infrastructure services
- Bookmarks that are always available on every device and every browser, regardless of operating system
- Intranet and Extranet sites
- and more…
Every tile is completely customisable for look and feel, and provides single sign on convenience and control to everyone.
Cipherise Integration Adapters
We are dedicated to an ever expanding set of out of the box integrations to ensure you get maximum benefit. No hidden extras, no “oh you want that feature?”.
Put simply, we believe that you should never have to choose what is important and what isn’t.
Current adapters include:
- SAML2.0 ServicesThousands of SAML compliant cloud services that can be configured and published to your users in a few clicks
- RADIUS Enable Cipherise as a second layer to protect legacy RADIUS enabled devices such as WiFI, WAF, and VPN
- Reverse Proxy Publish internal website to the open network without the need for a VPN, bespoke user management or a DMZ.
- APIsCreate custom integrations for Authentication, Authorisation, and Digital Signatures for applications and workflows
- Linux SSHProtect servers and jump boxes
- Linux SuDo Place controls around administrative execution
- Windows DesktopsComing Soon
- Windows ServersComing Soon
- Mac OSX DesktopsComing Soon
Cipherise Administration Capabilities
The administration portal provides secure control and access to the underlying capabilities of your Cipherise integration.
- Onboarding ControlsEnable Self Service enrolment, secured enrolment, or fully managed enrolment with per-service granulatiry
- Legacy and Alternate Authentication FlowsEnable alternate flows for migration and transition, users without devices, or specialised requirements with per-service granularity
- Single Sign On and Single Sign On Groups Control the user friction experience for first and subsequent entries across a group of applications and services
-
Audit Logs
A log of every event that occurs for Administrators and Users kept air gapped on the cloud component of Cipherise - Event Log An RFC 5424 / CEF compliant log service that pushes real time to your choice of syslog, SIEM, and/or log management tools
- Servicedesk serviceA role based administration capability for enabling restricted views and authorities for service desk users
- Branding control per serviceEnsure the user experience reinforces trust in your organisation at every step of engagement
- Deployment serviceEnables multiple service portals and independent instance control
-
Enterprise identity store support
Whether your company utilises AD, ADFS, 389, Microsoft Graph, or any other LDAPS source, Cipherise can leverage a read only bind to immediately enable onboarding, groups, and user privilidge enforcement. No need to reproduce, and we never keep any of your user data inside Cipherise - it stays in your organisation