Customer wanted to ensure that their digital data were accessible only by authorized employees. The main issue was their confidential data. They had already configured appropriate access rights and encryption standards. However password guessing and password sharing was their main issue.
We designed, planned and implemented a corporate public key infrastructure and a 2-factor authentication system by using smartcards. Basically, we provided all employees with a USB key. That USB key contained their personal certificate (private key). Moreover, they had to enter a personal PIN number for that key to work.
We’ve managed to secure all employees’ digital identities by enforcing strict authorization standards. We’ve made sure that confidential data were accessible only by authorized users, because the two-step approach we’ve implemented required a USB token (something they own) and a PIN (something they know).