OUT OF BAND AUTHENTICATION Network Access Security Southeast

User Name & Password o IBM 1950’s o In-band authentication p Access and authentication share same path o Easily Hacked p Dictionary attacks p Social engineering p Surveillance © 2003 QT Worldtel Inc. User Name Password

Out of Band Access Control o 2 nd network o Separate access / authentication

Telephone Authentication o Private lines p Invisible p Non-sniffable p Global mobility p Tri-factor

Top Secret Access Control o Bio-metric layering p Pin / Finger / Iris /

BENEFITS o Cost p No client side software or hardware o Ease of Use p Client knows how to use – no learning curve o No Infrastructure Deployment p Telephone network already built o Guaranteed security p Tri-factor availability / Silo o Tangible p Promotes confidence / adoption © 2003 QT Worldtel Inc.

Users o Government p Silo / bio-metric p Addresses the pain NOW - affordable o Information workers p (Remote) access is power o Commercial internet transactions p Consumer confidence © 2003 QT Worldtel Inc.

Access vs. Transport Security o Transport p p p © 2003 QT Worldtel Inc. Digital certificates - CA Dynamic Encryption – session keys Signatures – intrusion detection IPSec encapsulation in tunnel-mode Masking – invisibility Private addressing –non-public internal addresses Super Firewall – filter on port, protocol, destination address Synchronous management – real time configuration, routes, rules, reporting, alarms, revocations Mutual consent / unilateral control for extranets No inhibitors – Nat firewalls, routers, proxies, blockers Mobility – dynamic addressing, mobile to mobile connections Central policy control - worldwide

Access + Transport Security = o End to end solution o Integrity of information

Private Global Networks QT Worldtel Inc. 130 West 57 th Street New York, NY 10019 Tel. 877 837 3764 Fax 775 256 6232 jack@qtworldtel. com www. qtworldtel. com