company introduction · company introduction the name raonsecure combines the korean word...
TRANSCRIPT
Company Introduction The name Raonsecure combines the Korean word ‘Raon’, meaning ‘joyfulness’ and ‘Security’; our company’s philosophy is to make solutions fun and easy to use, creating a culture for online security.
MobileBio-authentication
SecurityAuthentication Service
White Hat Center
Korea’s market leader in biometric authentication
FIDO Alliance Board Member
Developing blockchain bio-auth service
Service provider for Korean major telecoms
Ministry of Science, ICP & Future Planning Award winner (2014)
More than 1 million users of certificate security service
Dec 3rd consecutive win at HITCON (Taiwan International Hacking Competition)
Sep Launched OneGuard – a next-gen smartwork security platform
Aug Korea’s first FIDO export (MOU with Infinitium in Southeast Asia)
Jul Launched FIDO bio-public PKI service for Busan Bank
Jun Appointed Intel Software Partner
May Appointed to FIDO Alliance Board of Directors
Apr Launched Samsung Pass iris authentication service via TouchEn OnePass
Mar TouchEn mVaccine ranked 8th on AppAnnie site
Jan MOU with US cybersecurity defense consultancy company, Theori
Dec Gartner Market Report Top 40 Representative Company for User Authentication
Aug USIM Simple Authentication Service Launch (Nonghyup Bank & Busan Bank)
Jul Awarded contract for KFTC’s distributed management system for biometrics
Mar Expanded FIDO market (KT, LGU+, Busan/Gyeongnam Banks, Citibank, Hyundai
Card, Shinhan Card, et al.)
Mar MOU with Shinhan Financial Group for Authentication & Security Research
Mar Lainched Non-ActiveX security / mobile security solution for government market
Jan Korea’s first FIDO-certified biometric authentication service with Shinhan Bank
Aug 1st place in DEFCON CTF Hacking Defense Competition
May TouchEn OnePass in first class of FIDO certified solutions (Android, iOS)
May Launches TouchEn OnePass – FIDO biometric authentication solution
Apr Raon White Hat Center named K-Shield Training Institute by Ministry
for 3rd consecutive year
Apr Announces Non-ActiveX-based integrated security solutions
Feb TouchEn mGuard (MDM) receives CC certification
Jul Launches RAON CTF – Cyber security education solution
Apr Holds an enterprise briefing session at RSA Intel Exhibition Hall
Apr Ministry of Public Administration & Security award winner
Apr 1st place in Code Gate 2018 Hacking Defense Tournament
Feb MOU with The Loop for development of blockchain bio-auth system
Jan Launched FIDO USB authentication device ‘RAON FIDO Dongle’
Security research, analysis and IT security auditing
3 World Hacking Championships (DEFCON, HITCON, SECCON)
ISMS certified, privacy consulting
2018
2017
2016
2015
TouchEn OnePass is a FIDO-certified biometric authentication solution and supports safe and convenient bio-authentication for mobile and PC.
Any OS, Any Browser, Any Service, Any Device!
FIDO USB biometric authentication device; fingerprint authentication for PCs without embedded fingerprint sensor for web environment
User Device
Send authenticationresult
- Product ID#s : 23208049 (Server) / 23208046 (Authenticator App) / 23208048 (Client_Android) / 23208047 (Client_iOS)
Input BIO info
IRIS
PIN
FINGERPRINT
FACE
VOICEPATTERN
Verify authenticationresult
Confirm authentication
Completeauthentication
FIDO Server Application Server
Service Flow
Special Features
Service Scenarios
Password-lessBiometric
Password Replacement Enterprise
RAON FIDO Dongle
FIDO and FIDO2 certification awarded in inaugural certification events Various biometric authentication services based on OS and web browser can be implemented on mobile or PC
Supports multiple biometrics (fingerprint, iris, voice, face, etc.) Used for banking, payments, securities, web portals. Expanding to IoT services like smart cars, smart homes, etc.
Quick integration, stable operation – a complete platform Faster installation than SI methods and easy to maintain due to high service stability
FIDO2 support
FIDO2 expands support to PC web browsers beyond the FIDO 1.0 mobile-centric environment(FIDO2 certification awarded 2018) Supports authentication for existing B2C mobile services and can be used for Web and C/S-based B2B intra-company business systems
Supports mobile service environments
PC web authentication by mobile device
Mobile basedDongle based
Protect corporate information with robust internal authentication system
Fully supports closed-network environments
Biometric Authentication
IRIS
PIN
FINGERPRINT
FACE
VOICEPATTERN
OneGuard is a platform that provides MAM, FIDO biometric authentication, mOTP, vaccine etc. with MDM-based add-on functions.
OneGuard MDM integrates mobile office and access control systems to prevent leakage of internal information.
Formal mobile security technology partner
Selective adoption by customer's environment
- Product ID#s : 23339180 (Server) / 23339207 (Client_1~500 users) / 23339181 (Client_501+ users)
Service FlowEfficient policy-based security model
MDM
MAM
MTM
MIM
Multiple security components
Prevents internal information leaks Mitigate damage via lost / stolen devices
Main Functions
OneGuard MDM
Integrated security management Organization & user device management Provides integrated management such as device & app usage control
MDM (Mobile Device Management) Access & location-based device control (camera, USB etc.) Business launcher support (separate business mode)
MAM (Mobile Application Management) Local appstore & remote install / delete on user’s devices Check integrity of distributed apps
APPLE MDM Official PartnerSamsung Electronics S.E.A.P. Official Parnter / KNOX Official ResellerLG Electronics MDM Official Partner
FIDO-based biometric authentication Support for FIDO authentications: PIN, fingerprint, iris etc. Simple bio auths / multi auths / auto login
OTP-based 2Factor authentication Mobile OTP 2Factor authentication support Strengthen mobile office security with FIDO
Mobile Vaccine Run MDM and mobile office in a secure execution environment Apply vaccine to mobile office
Mobile Security
Platform
In-depth correlation analysis of threats
Device control
Electronic subscription service
Mobile office
Access control system
Lock devices
Device backup/delete/restore
Device location track
Block spoofed apps
Detect & quarantinemalicious apps
Prevent rooting
Secure Launcherprotects data
FIDO-based bio authentication
Integrate mobile services with corporate security policiesProtect corporate which controls mobile service assets
Prevent illegal use of lost / stolen device – prevent information leakageComply with security guidelines for mobile information protection
TouchEn MAC Serverless is a solution that allows visitors to control devices without having to deploy an MDM server.
Key# wireless is a mobile-only digital signature / interval encryption solution.
Lightweight converted MDM Prevent device and personal information leaks
Implement various device policies
Control device policies in real time
Corporate A Corporate B
- Product ID#s: 23148186 (Server) / 23148187 (Client)
Service Flow
Service Flow
Stand Alone MDM Flexible security policy settings
Special FeaturesFlexible security policy settings Simple and smart application of desired device policy through mobile app
Integrated location-based functionalityQR, Beacon, and GPS allows response to various situations such as visitors’ access or failed app deletion
Reduce administrative and operational costsReduced cost of server deployment, security staff and additional tools
Special FeaturesPKCS#7 ComplianceElectronic signature and encrypted/decrypted communication
Easy copying of Non-ActiveX certificatesTransfer / copy certificates across PC, mobile using 12-digit serial number
Supports various environmentsMulti-OS support (Android, iOS); Native & Hybrid Apps supported
Mobile Security
Serverless system Android / iOS support
User PC Relay Server User Smartphone Service Server CertificateAuthority
Moving or copyingcertificates
Digital signatures or encryption
Certificate validation(CRL, OCSP)
Key# wireless Relay Key# wireless Relay Key# wireless Relay
Key# wireless Client Key# wireless Server
Mobile Security
TouchEn mTranskey is a mobile virtual keyboard solution.
Service Flow
- Product ID#s : 22941399 (Web) / 22941400 (App)
Special FeaturesWeb, C/S, Hybrid environments support Support for web full browsing, C/S for smartphone applications, and Hybrid app environments
Optimized for multiple OSes and devices Provides multiple resolutions and UI experiences (enlarged input keys, etc.) depending on device environment
Superior security Random input coordinate values are encrypted and interval encryption (self E2E) is also employed during data transfer
TouchEn mVaccine is a more secure mobile vaccine featuring a dual engine.
Service Flow
- Product ID#s : 22941403 (Web) / 22941404 (App)
Special FeaturesSupports various mobile environment Mobile Web, Mobile App, App SDK support
Superior detection capability Employs dual detection engine (Raonsecure’s Whitehat, developers’ analysis and Bitdefender’s engine)
Supports authorization-based heuristic examinations Disable dangerous apps based on user choices
User User Smartphone Server
Pass encrypted input coordinate values
Update patterns
Create virtual keyboard
Smartphone
Mobile Security
Service Flow
AppIron is an app anti-tampering solution that provides app integrity, source code protection, code obfuscation, and more.
Special Features3 Levels of defenseObfuscation & binary concealment – platform / application modification monitoring – anti-reverse engineering protection
NIS (National Intelligence Service) CMVP-compliant module Adheres to algorithm requirements and provides reliable security service
Device forgery / modification detection Root / Jailbreak detection & OS-modifying app detection
PC Security
Line Up
Providing SSL certificates as the official partner of DigiCert – the world’s #1 global certificate authority.
Special FeaturesNo.1 SSL Certificate 55% world market share; 49% Korean market share
Forbes Global 2000 preferred supplier 89% of the top 500, including Facebook, Samsung Electronics
Fastest OCSP response time 100% OCSP Server uptime, OCSP response time 8 times faster than other companies – faster means more sales opportunities
Appdeveloper
APP FileAnti-tampering and obfuscation
Forgery / modification
detection
App execution
3 Domains /“Green Bar” Extended Validation Certificate protection
App development
App market/ store
1 Domain registration 4 Domains registration Unlimited sub-domains1 Domain /“Green Bar” Extended Validation Certificate protection
256 bit encryption / SHA-2 algorithm / 2048bit supports
Smartphone app execution environment
ExecutionDeployment& installation
encryption
PC Security
Service Flow
TouchEn nxKey is a non-ActiveX solution that fundamentally blocks hacking attempts to intercept keyboard input.
Service Flow
TouchEn Transkey is a virtual on-screen keyboard solution using mouse to prevent interception of keyboard input values.
- Product ID#s: 22941396 (IE) / 22941395 (Multi-browser)
Special FeaturesBuilt-in PKI-based tunneling technique (E2E) Supports end-to-end security from keyboard input to delivery at server
Various responses to keyloggingResponds to various keylogging methods: e.g. high-speed polling, BHO, debug registry activation, Activity / Elite, etc.
Multi-OS / Browser supportWindows, Linux and Mac OS
- Product ID#s: 23181721 (Server) / 23181724 (Client)
Special FeaturesPrevents memory hackingInformation entered via virtual keyboard using random interface is treated as encrypted coordinates, which are fundamentally safe from the risk of memory hacking
Multi-cursor supportDisplay the mouse cursor on-screen in multi-view to prevent leakage of input values through screen scraping
Increase user convenienceSupports pure web environment (HTML5) with no need to install any program on user's PC
E2E encrypted transmission
User PC Server
Enter information
User PC Server
Passing encryptedinput coordinate values
Using virtual keyboard input on-screenwithout physical keyboard
PC Security
Service Flow
TouchEn nxWeb prevents content leakage via web browser.
Service Flow
Key# Biz is an encryption / decryption and digital signature solution supporting various user clients.
- Product ID#s: 23075932 (IE) / 23075933 (Multi-Browser)
Special FeaturesPrevents web contents leakageBlocks screen capture, printing, view source, etc.
StabilityPure client implementation, no load to server
Operational convenienceMulti-browser support for standardization and easy policy change
- Product ID#s: 22907742
Special FeaturesSupports all types of user clients Non-installed web standard version (HTML5), local web server (exe), extension (Win32 DLL) supported
Compatible with PKCS#7 compliance Supports various digital signatures such as NPKI, GPKI, EPKI, MPKI certificates and PKCS#1 abbreviated signatures
Maximize security Protects user information with built-in virtual keyboard and easy integration with keyboard security solutions
User PC Server
Web page access Deployment & installation
Check web pageson content protection
Applying web content protection
Service Server Certificate Authority
Digital signatures or encryption
Certificate validation(CRL, OCSP)
Integrated Account Management
Service Flow
Edition
TouchEn Wiseaccess is a solution for SSO user authentication, rights management and enterprise user account management.
- Product ID#s: 22941402 (10 sets of Server+Client)
Special FeaturesSSO (Single Sign On)Provides an integrated authentication solution for distributed environments Prevents duplicate logins of the same user ID SAML-based SSO
EAM (Extranet Access Management)Apply RBAC-based granularity to enterprise users System, screen, menu permissions assigned by user access level Personalized user dashboard Integrated rights management for various web and client/server applications
IM (Identity Management)System integrates and manages redundant accounts through a common management console Synchronize and provision account information between resources to provide efficient and secure management
Simple and lightweight SSO-only solution (SSO): Service oriented
SSO and authentication service
Rapid scalability with lightweight configuration
Enhanced user authentication management (SSO): Service / Business
Provides integrated authentication through enhanced SSO session management
Duplicate login protection and session clustering improve security and operational
continuity
Enterprise-wide Auth/Access Management (SSO/EAM): Enterprise
Provides rights management based on UACL and RBAC (Hybrid Privilege Control)
Integrated authentication and authorization rights for user and server resources
Provides differentiated security functions and a centralized management environment
User
SSO login Access to systems by role-based user policy
Reference
We have secured a majority of customers in the financial and public sectors based on proven technologyand experience in the ICT integrated security market. More than 500 businesses and 30 million individualusers in the public, financial, and business sectors are using our products ans services.
Our Customers
Finance
Government
Business
MEMO
Raonsecure USA Inc.WEST (San Jose, CA) : 3003 N First Street STE 324, San Jose, CA 95134CENTRAL (Houston, Texas) : 2700 Post Oak BLVD 21st Floor, Houston, TX 77056- E-mail : [email protected]
Raonsecure Co., Ltd.Headquarter : 11~13F, 145, Teheran-ro, Gangnam-gu, Seoul, KoreaBranch: 913, 76, Dunsan-daero 117beon-gil, Seo-gu, Daejeon, Korea- Tel : 02-561-4545 / Fax : 02-561-5343- E-mail : [email protected] Web : www.raonsecure.com / Blog : blog.raonsecure.com
Copyright © RAONSECURE All rights reserved