Biolock : biometric security SAP

AGENTIL is pleased to propose you exclusively a biometric solution for SAP R/3. Biolock is a SAP certified software and can be used in Compliance, Security and Fraud Mitigation approach for SAP Systems. BioLock offers a 5 Level Protection for SAP. It expands the scope and justification for biometrics from simple password replacement and multi-factor authentication to Fraud Mitigation. The bioLock system adds a second layer of protection (a biometric "door lock") on any critical area or function of your SAP system. In addition to the SAP User authorization users need a "special invitation" from the bioLock system to execute protected functions. For the first time, fraud can be identified, prevented, and the attacker can be questioned or even arrested in "real time" since biometrics has uniquely identified the individual within the SAP system.  Of course, all critical tasks that John does while being logged in as John will be recorded in the user profile as well. Auditors always have proof of who did what and when in the system and this can help your company to identify, prevent, and deter fraud.

The Purpose of the bioLock Verification Process:

This process ensures that even authorized users cannot commit fraud using other people's user profiles. For example: If an authorized user, John, tries to make a wire transfer using Peter's SAP user id, his attempt will be rejected, but it will clearly state in the log file that John - uniquely identified with biometrics - tried to attempt fraud with another person's user profile. Thus the fraud attempt was successfully prevented.

Using Biometrics for Fraud Mitigation:

Biometrics offers much more than just simple password replacement. With unique, innovative technology, biometrics can protect not only the logon, but any part within the powerful SAP application, to prevent costly incidents within the system.

BioLock - First System to Protect and Identify:

• Protect any mouse click in the SAP application
• Enable fraud mitigation 
• Biometric identification of the "actual" user

Common Areas that receive bioLock Protection:

• User Logon
• Finance
• Human Resources  
• Purchasing
• Research

Once a transaction or function is requested, such as displaying a balance sheet, creating a purchase order or issuing a wire transfer, the bioLock system will pop up a window requesting a biometric verification. A person's finger has to be placed on the sensor in order to proceed.

bioLock Verification Process:

The user's finger is placed on the sensor

Immediately bioLock scrolls through the database templates to find if the finger is registered

If the template is not found: the task will always be rejected, even if executed by an administrator with all access rights!

If the template is recognized: the system will then check the bioLock settings with pre-defined special permission settings that indicate the user has authorization from bioLock and will then accept or reject the request.

Executed and rejected tasks will be logged in the log file for auditing purposes

Innovative Biometric Technology can help Correct and Secure many Typical Problem Areas:

SAP Logon: Unauthorized users use or share SAP User ID’s, even at different locations at the same time

HR: Protect and secure HR information including health insurance, salaries and social security info

Finance: Prevent tampering of payment releases, salaries, wire transfers, changing budgets)

Balance Sheets: Access to any internal company information

Research Data: Research data that is stolen or changed

Purchasing: Unauthorized users purchase unauthorized items 

Workflow Approval: People use supervisors password's with or without them knowing about it

Fast User Switching: Users are supposed to log in and out for minimum tasks (bank, hospital...)

Convenience: Remember multiple passwords that could require up to 15 characters 

Compliance: Passwords offer NO True Identity Management (SOX, Internal Controls)