Kobil Systems, the German vendor of IT security solutions, has received a SAP interface certification last August allowing the integration of their products into SAP solutions. The certificate makes Kobil SAP ISV (Independant Software Vendor) partner and confirms "Kobil eSecure for SAP R/3" combining SecOVID, Kobil Smart Key and Kobil mIDentity product lines for secure authentication. The company enables authentication either over one time passwords or digital certificates and also combination of both technologies with only one hardware, for example with SecOVID Reader Plus and Smart Card or mIDentity.
With the SAP interface certification, Kobil can provide a secure authentication for SAP R/3 being especially important with respect to data protection, for example with personal data in Human Resources departments. Authentication is either realised with the one time password solution SecOVID or based on digital certificates with the solutions Kobil Smart Key or Kobil mIDentity.
More than 13 million users in 22.600 companies and in more than 120 countries are using SAP solutions. With SAP R/3 there are two possibilities for authentication: the client server application SAP GUI and the browser based access over a web application server (WAS) or internet transaction server (ITS). With SAP GUI, authentication between SAP and Kobil solutions is realised over an SNC (Secure Network Connection) module. Over those interfaces, authentication, encoding and integrity protection is done between SAP R/3 servers and SAP R/3 clients. With web application servers, a platform independent portal solution, authentication is done over an SSL connection between web browser and WAS interface. SSL authentication happens on both sides, i.e the server authenticates itself to the browser (user) and vice versa, while all transferred data is encoded.
While, using SAP GUI, authentication can be done with all three certified Kobil products (SecOVID, Kobil Smart Key, Kobil mIDentity), with WAS or ITS only Kobil Smart Key and mIDentity work. In contrast to products from other vendors, Kobil solutions also offer authentication for terminal servers (Citrix and Windows). Through single sign on in multi-server environments, with Kobil solutions only a one time authentication is necessary for SAP GUI registrations. After that, registration with other SAP servers is done automatically.
According to Ismet Koyun, General Manager at Kobil, the SAP certification for Kobil solutions is an important step to enter into the important SAP market. "Kobil is the only vendor worldwide, offering authentication with one time passwords and digital certificates, and the only company enabling a combination of both technologies with only one hardware. Users, thus, receive all components from one hand and with highest interoperability", says Koyun. The mixed operation from one time passwords and digital certificates enables maximum flexibility for stationary and mobile users. In addition, the combination of SecOVID and Kobil Smart Key or Kobil mIDentity represents a significant surplus value, as users can encode e-mails and data and digitally sign them. The Smart Card can also be used as multi-functional company card, for example for access control and time registration as well as paying in the staff restaurant.