Rostelecom-Solar implemented the solution for management of access rights of Solar inRights in SDM-bank

On July 11, 2018 the Rostelecom-Solar company, the developer of products and services for target monitoring and operational management of information security, announced project completion of implementation in SDM-bank of the solution for management of access rights of Solar inRights. Nuclear heating plant company acted as the partner in the project.

SDM-Bank has a large number of information systems, for access to which users different credentials were required. Besides the administrator of cybersecurity had no single console in which access rights of employees of the bank to all information resources would be reflected. Such systems as Solar inRights, allow to manage in the mode of "one window" all access rights of employees of the bank and also to simplify control of changes as that: issue of the rights to the new employee, removal of the rights at the dismissed employees, or employees whose business function in bank changed. SDM-Bank approached this task in a complex, having set as the purpose not only to centralize management of access rights, but also to integrate the IdM-solution with a control and management system for physical access (ACS) and the system of pass-through authentication (Single-Sign-On). For access to information systems employees of the bank use smart cards now with the chip on which the digital signature certificate is stored.

The classical one-factor system of access became obsolete: users can transfer each other passwords from accounts, quality of passwords too often quite weak. For an exception of the risks of cybersecurity connected with access to information systems we decided to build the echelon multiple-factor system of protection. The employee can log in to an account only if in front of these ACS recorded his physical presence at office. Authentication happens only to use of a smart card and PIN code. Also in case of acceptance of the employee for work, using Solar inRights its accounts in all managed systems are automatically generated, and at dismissal it is enough to withdraw the digital signature certificate that access was blocked everywhere. Oleg Ilyukhin, Vice chairman of the board of SDM-bank

SDM-Bank has thirteen departments in Moscow and the Moscow region and eight branches in the cities of Russia. Pilot implementation of Solar inRights took two months during which the product showed excellent results. After that the solution was deployed on all volume of infrastructure of bank.

It is possible to call the project in SDM-bank non-standard. A lot of things depended not only on functionality of Solar inRights, but also on quality of its integration with the third-party systems. In the middle of 2017 Rostelecom-Solar and Indeed Identity developed the joint integration solution, and the present project it is possible to call it baptism of fire. Dmitry Bondar, head Solar inRights of Rostelecom-Solar company

Process automation, connected with providing, management and a withdrawal of access rights and also strengthening of information security of bank became a project deliverable.