Alcatel Bundles Funk's Steel-Belted RADIUS Server in Omni Switching Platform Authentication Services Offering; Offering Moves Security Demarcation to the Switch Port

Business Wire, April 17, 2000

Business Editors

CALABASAS, Calif.--(BUSINESS WIRE)--April 17, 2000

To help provide secure network access at the switch port, Alcatel today announced the addition of a bundled user authentication, authorization, and accounting (AAA) solution combining Alcatel's user authentication capability for its OmniSwitch, Omni Switch/Router, OmniAccess and OmniStack products with Funk Software's Steel-Belted RADIUS software.

The fast growth of Internet and e-commerce is driving increased demand for security, and user authentication is one part of it. A growing trend in authentication is to segment the network into privileged zones or groups, so different users get access to different resources according to their needs.

Traditionally, RADIUS has been used for remote access users, but Alcatel is now expanding the technology's role to the LAN. Using RADIUS in conjunction with privileged zones provides a higher level of security than traditional network sign-ons, because unauthorized users who break into the system don't have access to the entire network, only a limited subset of the network resources.

Alcatel's Authentication Services implementation allows switch ports to be defined as authentication ports. When a user accesses the network through one of these ports, he or she is prompted for a password or other identification. The switch's integrated RADIUS client then authenticates that user with information stored in a RADIUS server. The server verifies identity and returns to the switch the network authorizations for that user. The switch then places that user's PC into the authorized subnet or zone. Accounting records are gathered and include connection time, disconnect time and total frames sent.

"Security is a key element of Alcatel's Switched Network Services. Our relationship with Funk Software is another example of Alcatel's commitment to open systems, interoperability and 'best-in-class' solutions," said Joelle Gauthier, Alcatel vice president of enterprise marketing. "Combining Steel-Belted RADIUS with Alcatel's User Authentication Service provides standards-based transactional and database access advantages for enterprise customers as well as services providers."

"RADIUS-based AAA services are the basis for any organization's security implementation. It provides a central location for managing all remote users and the AAA services for their network access," said Joe Ryan, vice president of Funk Software. "Steel-Belted RADIUS is on the leading edge of RADIUS server technology, and we are pleased that Alcatel has chosen to use our technology with their powerful network access equipment and unique view on LAN security."

Under terms of the agreement, Funk Software will provide Alcatel with the Enterprise Edition of its industry-leading RADIUS software for NT and Solaris operating systems. The product comes as an optional bundle with Alcatel's Authentication Service. The bundle includes Funk Software's Steel-Belted RADIUS software, documentation and attribute dictionaries.

Key applications for Authentication Services include:

-- Secure access in enterprise/campus environments such as medical facilities, manufacturing operations and government complexes

-- High-speed secure access to the Internet for colleges and universities, hotel rooms and service providers via DSL or cable modems

-- User mobility regardless of physical location, including traveling personnel, IT staff, and conference rooms.

"Authenticating users to the network is a great way to protect the perimeter of a network and augment a firewall-based security strategy," said Jeff Hayes, Alcatel product manager. "User authentication at the switch port promotes user mobility and offers flexibility at controlling network access at the perimeter. Alcatel is the only switch manufacturer to offer both a full-functioning firewall and port-based user authentication integrated into the same product family."

Alcatel's Authentication Services

Alcatel's Authentication Services was the first product to provide network access and broadcast management based on a user's identity -- a password and user ID -- rather than by port, MAC address, protocol type or IP address. These services, which operate at wire speed, are useful for organizations that need secure access to their networks, for organizations with mobile users and for service providers who want to offer secure data services.

Provide flexible, available and secure networks, providing secure access to layer 2 networking domains, they support a number of different configurations including: 1) single RADIUS authority which is used when clients are authenticated using a single server or chain of servers that are configured with group information or 2) multiple authority mode when one party is providing the network and another is providing the server; and 3) proxy RADIUS when authentication is provided against a RADIUS server located at another site.

Alcatel's Authentication Service was examined by The Tolly Group. The complete test results are available via the Tolly Verified database (see Tolly Verified #98263) at http://www.tolly.com.