Fido Authentication Features

Simpler, stronger authentication with FIDO U2F, UAF, and FIDO2 solutions

Digipass FIDO Touch (FIDO2)

Customer Experience

Simplify customer experience

Passwordless browser login

Log on securely to online services and perform banking transactions via mobile or desktop with Digipass FIDO Touch. Digipass FIDO Touch works out-of the-box with any FIDO2 enabled service

Passwordless login to Windows and Microsoft Azure AD 365

Digipass FIDO Touch replaces the username and password combo to sing-in to Windows 10 and the cloud version of Microsoft Azuez AD 365.

Minimize security risks via regular platform updates and automated security updates
 

Frictionless and intuitive user experience

Digipass FIDO Touch comes with a touch screen enabling a intuitive user experience. Digipass FIDO Touch will work with any FIDO2 enabled service without requiring the user to download drivers or software.

Secure-Search

Enhanced Security

FIDO2 certified

Digipass FIDO Touch is a FIDO2 certified solution enabling passwordless authentication directly in the browser. FIDO2 protocols are backwards compatible with FIDO UAF, so you can easily deploy Digipass FIDO Touch together with our Mobile Security Suite with FIDO.

Eliminate shared secrets

FIDO protocols use asymmetric public key cryptography. At registration, a private and public key pair is generated and the private key never leaves the device. As such, there are no server-side secrets to steal. There is also no linkability between services, which means that no information is provided that would allow user tracking

PIN as second factor

Digipass FIDO Touch is a PIN protected device. PIN codes are entered via the device’s touch screen and are therefore never exposed over any network. The solution protects against a variety of known and potential attacks, including PIN brute-force attacks. After too many incorrect guesses, the device is locked.

Compliance

Compliance

PSD2

FIDO meets the requirements outlined in the revised Payment Services Directive (PSD2) Regulatory Technical Specifications (RTS). Digipass FIDO Touch satisfies the possession factor and the local PIN verification constitutes a second factor as mandated by PSD2. Digipass FIDO Touch equally supports dynamic linking for transaction authorization as transaction details can be presented on the display for user approval.

GDPR

FIDO meets GDPR compliance requirements by design. FIDO delivers authentication with no third party in the protocol, and no linkability or tracking between accounts and services. Server-side secrets are eliminated and local verification of data (e.g., PIN and biometrics) complies with the GDPR.

Easy-to-use

Easy to setup

USB or Bluetooth

Digipass FIDO Touch works in connected mode via USB and unconnected mode via Bluetooth so users can select their preferred authentication mode. Simply plug in the device via USB . To enable Bluetooth, the device just needs to be paired to the user’s mobile, PC or platform he wishes to connect to.

PIN entry

Upon first use, users will have to set a PIN. After the PIN is set, users can log on to or sign transactions via any FIDO2 enabled service.

Cost

Cost-efficient solution

Open standards reduce development costs

Tap into FIDO’s interoperable and standardized ecosystem to deploy strong authentication for login and transaction validation without the incremental cost of in-house development.

Faster time to market

FIDO certified products are supported out-of-the-box as they come out onto the market. 

Digipass SecureClick (FIDO U2F)

Access-Multiple-Verification

Security

FIDO U2F Certified Device

Digipass® SecureClick is a FIDO U2F BLE (Bluetooth Low Energy) device that enables users to securely access their online applications by adding a second factor to strengthen the authentication process.
 

Multi Factor Authentication (MFA)

Digipass SecureClick leverages proven multi factor authentication technology to protect online accounts at the push of a button. Users simply log in to the website and enter their password. They then push the button on their Digipass SecureClick and the login process is complete.

Encrypted Communication

All communication between Digipass SecureClick and the Bluetooth Bridge is encrypted. As a result, Digipass SecureClick protects even the most sensitive mobile transactions while delivering lightning fast user connectivity. 

One-Button-Authentication

Bluetooth and USB Dongle

Digipass Bluetooth Bridge

For PCs that do not support Bluetooth, OneSpan offers a Bluetooth Bridge in a USB dongle. Inserting the dongle into the USB port of a computer pairs Digipass SecureClick with the  Bluetooth Bridge, enabling it to be used as a FIDO U2F USB device.

Mobile Security Suite with FIDO (FIDO UAF)

Mobile-App-Security

Security

FIDO UAF Certified

Mobile Security Suite with FIDO is a FIDO UAF certified solution.

Eliminates Shared Secrets

FIDO protocols use asymmetric public key cryptography. At registration, a private and public key pair is generated and the private key never leaves the device. As such, there are no server-side secrets to steal. There is also no linkability between services, which means that no information is provided that would allow user tracking.

Biometrics

Biometrics are never stored or matched on servers, and can only be stored and matched on a consumer’s device. 

Additional Risk Scoring Security Features

FIDO capabilities are offered as part of the OneSpan Mobile Security Suite. This is a comprehensive developer toolkit (SDK) that natively integrates application security, FIDO authentication, and electronic signing into mobile applications. The Mobile Security Suite provides FIDO authentication and much more, including features such as geolocation, jailbreaking, device binding, and secure storage. 

App Shielding

Protect native apps against sophisticated mobile malware through app shielding and Runtime Application Self-Protection (RASP). Application shielding protects a mobile app from the inside out. It allows the app to securely operate even in potentially hostile environments, such as jailbroken or rooted devices – blocking malware and helping to prevent intrusion, tampering, and reverse-engineering. 

Compliance

Compliance

PSD2

FIDO meets the requirements outlined in the revised Payment Services Directive (PSD2) Regulatory Technical Specifications (RTS). FIDO supports strong customer authentication and multi factor authentication, as well as dynamic linking for online and mobile payments (to protect against Man-in-the-Middle attacks).

GDPR

FIDO meets GDPR compliance requirements by design. FIDO delivers authentication with no third party in the protocol, and no linkability or tracking between accounts and services. Server-side secrets are eliminated and local verification of data (e.g., PIN and biometrics) complies with the GDPR.

Ready for the benefits of FIDO-certified solutions?

OneSpan offers a comprehensive suite of FIDO U2F, UAF, and FIDO2 compliant solutions to secure your online and mobile applications.