Entrust, NetMotion Wireless Deliver CJIS Compliance for Advanced Authentication through Entrust IdentityGuard Authentication Platform

DALLAS, Oct. 17, 2012 /PRNewswire/ -- Entrust Inc. completed the NetMotion Wireless Authentication Alliance certification to offer law enforcement agencies a seamless solution for out-of-the-box compliance to many of the FBI's Criminal Justice Information Services (CJIS) Security Policy requirements for advanced authentication. Entrust's identity framework, and components of the Entrust IdentityGuard software authentication platform, now easily integrate into the NetMotion Wireless Mobility XE Mobile VPN solution.

"Entrust offers one of the only solutions that supports every advanced authentication method defined in the CJIS Security Policy — and all from a single authentication platform," said Entrust President and CEO Bill Conner. "Law enforcement agencies often are tasked with properly authenticating identities and securing sensitive information, so we want CJIS compliance to be a cost-effective, no-hassle process for them."

More than 300,000 state and local government employees use Mobility XE Mobile VPN across all 50 states. The solution allows mobile workers to maintain and optimize mobile data connections as they move in and out of wireless coverage areas and roam between networks.

In addition, Mobility XE is certified at Common Criteria Evaluation Assurance Level 4 (EAL4), an international set of guidelines for verifying the security features and capabilities of IT solutions, and used extensively throughout Europe and by the U.S. federal government. Mobility XE also uses AES encryption modules that are FIPS 140-2 validated, the U.S. government's standard for securing non-classified information, and supports multiple forms of single- and two-factor authentication types.

With Entrust IdentityGuard integration, officers or agents are able to use a number of proven authenticators — grid cards, tokens, PKI certificates or one-time passcodes, for example — to log in to the NetMotion Mobility VPN for access to authorized networks, databases or applications.

Any organization that requires access to the FBI's CJIS database must comply with the security policy by September 30, 2013. This includes authenticating identities from non-secure locations, including police cruisers.

"It's imperative to ensure advanced authentication solutions operate with our mobile VPN in order to help ease deployment during CJIS compliance efforts," said NetMotion Wireless President and CEO Bob Hunsberger. "This approach ensures law enforcement is able to quickly comply with CJIS mandates and focus on the core goals of their agency, department or office."

This allows organizations to choose the authenticator, or combination of authenticators, that meet the unique requirements of their users. This achieves CJIS compliance while minimizing the impact on officers, agents, court officials and more.

Entrust's comprehensive identity framework serves as an organization's single software-based security platform that bridges emerging technologies for strong mobility, cloud and smart credentialing offerings. By seamlessly integrating co-deployment measures, federation security, advanced APIs and self-service management tools, Entrust strengthens security, maximizes staff efficiency and reduces overall costs.

This approach is powered by Entrust's flagship authentication solution, Entrust IdentityGuard, which continues to lead the industry as one of the most robust software authentication platforms. It provides an unmatched breadth of capabilities and flexibility to address the most demanding security environments.

The solution enables organizations to layer security — according to access requirements or the risk of a given transaction — across diverse users and applications. Entrust's diverse set of authentication capabilities include smartcards and USB tokens, soft tokens, grid cards and eGrids, IP-geolocation, questions and answers, mobile smart credentials, out-of-band one-time passcodes (delivered via voice, SMS or email), out-of-band transaction verification and a range of one-time-passcode tokens.