Last time I said we'd look at smart cards and directories - and so we shall. A few weeks ago in my Network World on Windows Networking newsletter I talked about using smart cards to control user logons and logouts - put the card in a reader to enable logging on, take it out and you are automatically logged off. I suggested using the same card for unlocking the proximity locks on secured doors so that users would have to remove the cards from the readers and keep it with them when they left their desks so that they could open any doors along the way. Proximity cards use a radio transmitter, while most token cards use a magnetic strip or digital interface so the functions should be able to co-exist.
Turns out that at least one company has gone one better - it has a proximity reader for your computer. No need to insert a card into a reader, just get within the preset range and you can access the machine, log on to the network, etc. Move out of range, and you are automatically logged out.
It's being offered by Ensure Technologies of Ann Arbor, Mich. (www.ensuretech.com) under the brand name XyLoc.
It consists of a radio transceiver (called a "Lock") that plugs into the computer and a discrete wireless radio transmitter (called a "Key") worn by the user. The Lock and Key stay in constant radio communication (up to 50 feet, or 15 meters) to determine user identity and location relative to the computer.
When you approach a computer protected by XyLoc while wearing a XyLoc Key, the Key automatically transmits a unique, 32-bit encrypted ID code to the Lock. The Lock verifies your identity with the XyLoc administration software; if authorized, the XyLoc system will unlock the computer's keyboard and screen. If unauthorized, the system remains locked and information secure. While the hands-free AutoLogon feature might be right for some situations, others will require the user to select their name from a menu and/or enter their password. XyLoc also could be integrated into other security measures, from tokens to biometrics.
Right now, XyLoc requires a Windows platform and a Windows server - and doesn't directly integrate with any directory service, an oversight that should be changed soon. In the meantime, any directory-enabled token- or smart-card vendors reading this should now get to work developing their own proximity card for computers - network managers and security chiefs will be very happy to see such devices.
RELATED LINKS
Network World Windows Networking Newsletter, 03/20/02
Dave Kearns is a writer and consultant in Silicon Valley. His most recent book is "Peter Norton's Complete Guide to Networks" published by SAMS. Dave's company, Virtual Quill, provides content services to network vendors: books, manuals, white papers, lectures and seminars, marketing, technical marketing and support documents. Virtual Quill provides "words to sell by..." Find out more at Virtual Quill or by e-mail at info@vquill.com
Directories archive
Past newsletters.
