Pre-Boot Authentication – SecureDoc

What it does

Improves the security and flexibility of authentication at pre-boot to better protect your sensitive data.

How it works

SecureDoc offers an industry-leading number of integrations with additional authentication methods including smartcards, tokens, biometrics, PKI and TPM. In fact, SecureDoc is the only solution with biometric authentication at pre-boot.

Passwords are the most common pre-boot authentication method, but without strong password rules, passwords can be a weak link in the encryption solution. One alternative is to supplement the passwords with a second ‘authentication factor’. Alternatively, a physical or biometric option may be chosen as the single factor for authentication. WinMagic has extensive pre-boot authentication capabilities.

Our “5 Factors Of Authentication” are:

	Factor	Technology (pre-boot)
1	Something you know	Password (Quality rules set centrally and enforced locally at pre-boot.)
2	Something you have	PIV/CAC cards, SPYRUS (for Suite B) plus support for a broad range of other tokens (RSA SID800, …)
3	Something you are	Biometrics (e.g. Support for built-in UPEK finger print reader)
4	Where you are	Check integrity locally of pre-boot environment TPM (credentials tied to specific machine) Verify on an authorized Network
5	Someone who trusts you	Verify on the network that even though the user has the local credentials that they have not been revoked (e.g. on PKI revocation List) AND that the pre-boot environment passes an integrity check. The machine will not be able to boot unless the network based server provides the required key.

[Back to Previous Page]  [Back to Top]