Unisys Limited

Stealth (Identity) Biometric system

Stealth Identity is a Biometric Identity Management product that provides verified identities and strong authentication capabilities.

Features

  • Biometric Multi-Factor, Multi-Channel Authentication
  • Verified Identity Enrollment
  • Robust Mobile SDK
  • Real Bisk Graded Authentication
  • Standards Based Open Biometric API
  • Automated Multi-Mode Biometric Identification Intelligence

Benefits

  • Attract and Retain customers with frictionless authentication solution
  • Reduce Fraud associated with comprised authentication credentails
  • Deliver best of breed biometric solutions to the market quickly
  • Securely extend capabilities of mobile applications
  • Reduce Fraud
  • Reduce TCO associated with manual identification of individuals

Pricing

£6.50 to £64 per device per month

  • Free trial available

Service documents

G-Cloud 11

906688709030478

Unisys Limited

Simon Corscaden

020 3530 0769

cloudstore@unisys.com

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints Buyers will need to purchase the 3rd party biometric authentication licenses on separately
System requirements Must purchase 3rd Party Biometric Software seperately

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Various options available. Based on Service package purchased.
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support No
Onsite support Yes, at extra cost
Support levels 9 to 5, 7 days a week
24x7
24x7 SLA of 1 hour
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started We provide User Documentation and an easy to walk through installation script. For more detailed customization we suggest you contract us for an on-site implementation engagement
Service documentation Yes
Documentation formats HTML
End-of-contract data extraction The data resides in the customers database
End-of-contract process Customers are no longer allowed to enroll or authenticate via the service

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Chrome
Application to install Yes
Compatible operating systems
  • Android
  • IOS
  • Linux or Unix
  • Windows
Designed for use on mobile devices Yes
Differences between the mobile and desktop service We have a mobile SDK to leverage the biometric devices present on a mobile device
API Yes
What users can and can't do using the API The SDK \ API is available for integration into Mobile Applications. There are also API's to extend and integrate the services authentication capabilities to other applications
API documentation Yes
API documentation formats
  • HTML
  • PDF
API sandbox or test environment No
Customisation available Yes
Description of customisation Customizations can be done through a service's contract to enhance the workflow, the UI and the biometric engines

Scaling

Scaling
Independence of resources This is a single tenant deployment

Analytics

Analytics
Service usage metrics Yes
Metrics types We can report on the number of user's enrolled in the system and have a log of authentication requests
Reporting types Reports on request

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • Other locations
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency Never
Protecting data at rest Encryption of all physical media
Data sanitisation process No
Equipment disposal approach In-house destruction process

Data importing and exporting

Data importing and exporting
Data export approach It is located in their local database
Data export formats ODF
Data import formats Other
Other data import formats None

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)
  • Other
Other protection between networks Unisys Stealth segmentation product can be purchased at an additional cost for highest security levels
Data protection within supplier network
  • TLS (version 1.2 or above)
  • Other
Other protection within supplier network Unisys Stealth micro-segmentation can be purchased for additional security

Availability and resilience

Availability and resilience
Guaranteed availability This is a single tenant solution, SLA will depend on how manyt resources are purchased by the customer
Approach to resilience Available Upon Request
Outage reporting Email alerts

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • 2-factor authentication
  • Username or password
Access restrictions in management interfaces and support channels Role Based Access Control
Access restriction testing frequency At least once a year
Management access authentication
  • 2-factor authentication
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users have access to real-time audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 British Standards Institution
ISO/IEC 27001 accreditation date 28/05/2015
What the ISO/IEC 27001 doesn’t cover N/a
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes Client Information Security policy (IS) incorporates Unisys Corporate IS policy. Adherence and compliance to both of these policies, for delegates engaged in providing the services, is mandatory requirement to joining the team. All delegates are security vetted and are provided annual Security briefings. Compliance, renewals and Joiners & Leavers registers are reviewed, monitored and reported on quarterly bases. Ad-hoc unannounced spot checks are also carried out by the Security Authority who is responsible for managing and reporting on all service related Information Security incidents. Further, delegates are also presented with the Service SyOps as well as the individual client SyOps that details how the system meets and delivers the G Cloud Security Principles. Delegates roles and responsibilities are defined by the processes and procedures outlined in the accompanying SOPS documentation. The Service Description details the Security Risk Incident and Emergency Security Incident management procedures. The Security Authority has a dotted line into the Unisys UK CIO and has a seat on the Corporate Security Governance board. Unisys operates an anonymous incident and dispute reporting scheme.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Customers have the choice to apply patches as they are released by the development team on their own schedule
Vulnerability management type Undisclosed
Vulnerability management approach Available Upon Request
Protective monitoring type Undisclosed
Protective monitoring approach Available Upon Request
Incident management type Undisclosed
Incident management approach Available Upon request

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No

Pricing

Pricing
Price £6.50 to £64 per device per month
Discount for educational organisations No
Free trial available Yes
Description of free trial 90 free trial of the service that comes with access to the SDK and the Biometric Client Software

Service documents

pdf document: Pricing document pdf document: Skills Framework for the Information Age rate card pdf document: Service definition document pdf document: Terms and conditions pdf document: Modern Slavery statement
Service documents
Return to top ↑