The firewall allows users to be authenticated in a number of different ways. For Windows hosts in a dynamic IP environment, NetBIOS hostname lookups can be used. For multiuser UNIX hosts, the ident service can be used. Alternatively, for higher levels of security, S/Key one-time passwords or random challenges using digital signatures (RSA or DSA) can be used. X.509 certificates and HTTP password authentication are also supported.