TrustID was developed using the following Microsoft software technology:

• Microsoft Visual Studio 2003 / 2005
• Microsoft SQL Server 2005
• Microsoft Windows 2003 Server

The broad range of authentication modules in TrustID integrate easily with existing organisation access control policies to form a highly trusted environment - ensuring only authorised users and sites can access resources. TrustID supports highly controlled / highly secure authentication via external and internal (KeyTrust developed) systems and supports the majority of popular authentication methodologies, including:

• Calling Line Identification (CLI) – mobile and fixed line
• Hardware ID – machine / device identification
• One Time Password (OTP) hard tokens
• LDAP (X.509) directories
• X.503 client certificates
• Smart cards
• USB tokens
• SMS
• Grid Card
• User name / password
• Strong password
• Biometric – fingerprint
• Biometric - keyboard
• Active and passive proximity cards

TrustID is used for service subscriber management and user enrolment for KeyTrust and UNITY managed services. It is also used to control end-user connections via Keytrust Secure Remote Access (SRA) to applications and systems contained within client environments (for example: radiologist remote connections to hospital PAC system). To set a TrustID managed service for the first time, user information is extracted from existing external directories ( for example: organisation LDAP) into TrustID. The extraction can be selectively restricted to groups or even individuals and no changes are required to existing directories.

Multiple security policies and settings can be defined in TrustID and assigned to individuals or. Policy settings may include designation of a user’s authentication method, frequency of challenge, access privileges in offline mode, which applications may be accessed, etc.

Implementing an authentication system in-house can be too difficult for many organisations to consider due to the upfront cost and high-degree of network security expertise required. Even if an organisation can afford to invest upfront in purchasing the many necessary hardware and software components, it will often lack the specialised technical personnel. KeyTrust has resolved these issues for organisations by delivering TrustID as a fully managed service. TrustID delivers to our clients these primary benefits:

• Market leading authentication and authorisation technology
• Delivered as a fully managed service
• Eliminates capital investment
• Affordable per user service fees
• Fits all size organisations
• Fast deployment – typical implementation can be in place in days not months
• Allows organisations to comply with Federal and State privacy requirements
• Comprehensive 24 x 7 help desk provided with secure remote support (technician access to the end-user desktop for issue resolution)

About KeyTrust. KeyTrust was founded in Australia 18 years ago and has traditionally been recognised as a developer and provider of managed security services for vertical markets, such as: health, legal, manufacturing, financial services and government. KeyTrust is an organisation that is independent of the Federal and State governments that use our reputation as a public guardian of trust. We have earned and maintain the confidence and trust of our clients through integrity and transparency.

KeyTrust is an Australian market leader in the areas of secure network managed services and IT security consulting services. KeyTrust functions through two divisions to deliver the complete spectrum of organisation network data security requirements:

1) KeyTrust Managed Services has for many years specialised in building "communities of interest" for vertical market sectors. In the health sector, KeyTrust designed, implemented and currently manage and operate the SHN (Secure Health Network), which is a closed community network that provides secure communication services to large health service organisations, such as: hospitals, clinics and State Department of Health regions.

The 2nd network is GPnet, which offers a complete set of secure network services for the Australian General Practitioner market. The 3rd health sector network is HCPnet, which is a complimentary network for Allied Health Care Professionals. The 4th health sector network is ImageNet, designed to meet the requirements of Radiologists. Cross communication is supported between the networks.

KeyTrust Managed Services also operate closed community networks for large commercial organisations and the Australian Federal government. KeyTrust Managed Services offers a broad portfolio of network security and trust managed services:

• Subscriber Management, Authorisation, and Authentication (TrustID)
• Enterprise Single Sign On (eSSO)
• Secure Remote Access (SRA)
• Security Configuration Management (SCM)
• Unified Threat Management —Workstation Protection (UTM-WP)
  — Anti-virus, Anti-spam, Anti-spyware, & Firewall
  — Intrusion detection & prevention
• Anti-Spam and Anti-virus (ASV)
• Unified Bandwidth Management (UBM)
  – Upstream WAN Link Load Balancing, Failover and Aggregation Secure Message Gateway (SMG) – Secure email (SecureMail)
  – Secure File Xchange (SFX)
  
• Secure Remote Backup (SRB)
• Distributed Application Publishing (DAP)
• Smart Virtual Directory (SVD)
  – LDAP and External Directory Synchronisation
• Smart Data Service (SDS)
  – Data Transformation Services
• Enterprise Search Service (ESS)
• User Activity Monitor (UAM)
• Secure File Storage (Data Repository)
• Acceleration, Monitoring and Optimisation (AMO)
  – Network Services
• Administration, Monitoring and Reporting (AMR)
• Secure Wireless Service (SWS)
  – WiFi Security Management
• Voice over IP (VoIP)
• Professional Services

2) KeyTrust Consulting offers a range of consulting services that together encompass the entire security, trust and identity value chain. The services offered are:

System Consulting

• Project management
• Briefing sessions
• Project plans
• Requirements gathering
• Requirements analysis
• Future state
• Gap analysis
• Recommendations
• Systems architecture
• Systems design
• Specific user requirements
• Product / system perspective
• Approval process
• Test plans
• Handover requirements

• Security strategy and planning
• Security policies
  – (AS/NZS 7799.2:2000)
• Security strategy
• Security controls and identity mgmt.
• Database controls
• Technical controls
• Threat and vulnerability management
• Penetration testing
• Patch management
• Vulnerability assessments
• Security crisis & incident response
• Disaster recovery planning
• Business continuity planning
• Risk assessment

For more information visit: www.keytrust.com.au

# # #