바로팜

"The strategy of the BaroPAM solution is to strengthen the security of information assets while minimizing user inconvenience!"

Based on a Zero Trust security model, the BaroPAM solution supports a security-optimized multi-layered authentication system utilizing a Pluggable Authentication Module (PAM) method. This allows anyone to easily and immediately apply the module to various operating systems and applications that require two-factor authentication (additional authentication) to enhance the security of information assets.

Using a module authentication method that eliminates the need for a separate authentication server, the BaroPAM solution moves away from centralized systems to support decentralized multi-layered authentication. It is a low-cost, high-efficiency solution that is highly secure, simple, requires no management, is fault-free, and can be easily applied and used immediately by anyone, without requiring the deployment of additional components such as separate servers or databases. ▣ Key Features of BaroPAM

▶ Supports multi-layered authentication using a modular authentication method that does not require a separate authentication server

▶ Guarantees service with fast authentication speeds (average authentication time within 0.01 seconds)

▶ Uses globally recognized 512-bit standard hash functions (HMac-SHA512 / Internet security standard IETF RFC 6238)

▶ Supports Time-Sync and dynamic secret key methods recommended by the Financial Supervisory Service

▶ Enables authentication even in areas with frequent communication failures or secure zones

▶ Supports dynamic security features such as disposable/volatile data that changes every time or is used once and discarded

▶ Can evolve from a simple (loose) configuration to a more complex (robust) security system

▶ Provides native identity verification capabilities for iOS

▶ Applicable to all fields requiring two-factor authentication, such as various information assets (supports PAM/SQL/HTTP authentication for RADIUS authentication of information assets)

▶ Provides ACL functionality for accounts that can be allowed or excluded from two-factor authentication ▶ Provides BaroPAM app source code obfuscation and screen capture prevention features

▶ Provides biometric authentication (fingerprint recognition, facial recognition) features upon launching the BaroPAM app

▶ Provides the ability to integrate configuration information with MariaDB in addition to files

▶ Provides the ability to set authentication limits and time limits (e.g., 3 attempts in 30 seconds)

▶ Provides features to prevent man-in-the-middle attacks

▶ Bypass authentication is impossible even if authentication information is falsified during the authentication process

▶ Authentication bypass (bypass techniques, fatigue attacks, etc.) is impossible

▶ Provides features to detect and block abnormal authentication

▶ Login is impossible even if account information is stolen by exploiting the auto-login function

▶ Provides an emergency one-time authentication key when the smartphone is unavailable

▶ Offers flexible customization and development integration with various applications (API integration with Java, C, C++, etc.)

Moving forward, the trend in information security is to strengthen security while minimizing user inconvenience. Passwords you don't need to remember! BaroPAM will be with you every step of the way.

Consultation inquiries mc529@nurit.co.kr