solutions

Transaction Verification
Mobile Banking
Two-Factor Authentication

Two-Factor Authentication

Strong Authentication using your mobile phone

  • User-friendly - intuitive end-user experience
  • Runs on virtually any mobile phone with a small footprint
  • Out-of-band (no network connectivity required)
  • Easy to brand
  • Powerful management and reporting interface
  • Allows multiple, unlimited, instances e.g. online banking; mobile banking; share trading etc.
  • SAS 70 Compliance audit in progress
  • Easy to integrate with existing infrastructure
  • Low cost of ownership
  • Easy to rollout to large unseen user base

FireID's strong two-factor authentication system for banks provides an easy-to-use and cost effective solution to securely access applications and information. FireID supports hardware tokens, software tokens and one-time password authentication using SMS. The authentication system enables banks to implement an additional measure for secure access beyond the traditional username and static password combination through multiple authentication mechanisms.

Mobile One-time passwords

End-users are required to identify themselves with two unique factors - something they know and something they have - before they are allowed access (e.g., to online banking or the Banks Virtual Private Network). The end-user downloads a FireID application and software token to their mobile phone. This is used to generate one-time passwords (OTP's) securely and out of band. The OTP is then used in addition to the username and password to gain secure access to an application or online service.

The banks end-users have the convenience of generating one-time passwords on their mobile phones without the need for connectivity to the mobile networks. This means the OTP can be generated anywhere in the world without experiencing SMS latency or costs for the end user or organisation. FireID is capable of successfully provisioning the FireID Personal Authenticator to almost all known mobile phones. We aim to provide a specific build for each make and model phone. This includes native builds for Windows Mobile, Blackberry, Apple iPhone, Symbian, Android and Palm

SMS One-time Passwords

In extenuating circumstances where a user has lost their phone or obtained a new device and not yet been provisioned, the FireID authentication server is able to provide a simple API for text message (SMS) OTP integration. This allows organisations to send and verify text-message OTPs using their FireID authentication server.

Hardware Tokens

Where hardware tokens are required by the end users, FireID provides the option of a key-fob or Card Token. The FireID authentication server can integrate with any OATH-compliant hardware token. The system provides a powerful management interface for hardware tokens, allowing such operations as token import, assignment to users and locking of hardware tokens.

© FireID SOUTH AFRICA 2010. ALL RIGHTS RESERVED. Terms and Conditions | Privacy Policy | A LOOKHERE DESIGN