Fido Authentication Features

Log on securely to online services and perform banking transactions via mobile or desktop with Digipass FIDO Touch. Digipass FIDO Touch works out-of the-box with any FIDO2 enabled service

Digipass FIDO Touch replaces the username and password combo to sing-in to Windows 10 and the cloud version of Microsoft Azuez AD 365.

Minimize security risks via regular platform updates and automated security updates
 

Digipass FIDO Touch comes with a touch screen enabling a intuitive user experience. Digipass FIDO Touch will work with any FIDO2 enabled service without requiring the user to download drivers or software.

Digipass FIDO Touch is a FIDO2 certified solution enabling passwordless authentication directly in the browser. FIDO2 protocols are backwards compatible with FIDO UAF, so you can easily deploy Digipass FIDO Touch together with our Mobile Security Suite with FIDO.

FIDO protocols use asymmetric public key cryptography. At registration, a private and public key pair is generated and the private key never leaves the device. As such, there are no server-side secrets to steal. There is also no linkability between services, which means that no information is provided that would allow user tracking

Digipass FIDO Touch is a PIN protected device. PIN codes are entered via the device’s touch screen and are therefore never exposed over any network. The solution protects against a variety of known and potential attacks, including PIN brute-force attacks. After too many incorrect guesses, the device is locked.

FIDO meets the requirements outlined in the revised Payment Services Directive (PSD2) Regulatory Technical Specifications (RTS). Digipass FIDO Touch satisfies the possession factor and the local PIN verification constitutes a second factor as mandated by PSD2. Digipass FIDO Touch equally supports dynamic linking for transaction authorization as transaction details can be presented on the display for user approval.

FIDO meets GDPR compliance requirements by design. FIDO delivers authentication with no third party in the protocol, and no linkability or tracking between accounts and services. Server-side secrets are eliminated and local verification of data (e.g., PIN and biometrics) complies with the GDPR.

Digipass FIDO Touch works in connected mode via USB and unconnected mode via Bluetooth so users can select their preferred authentication mode. Simply plug in the device via USB . To enable Bluetooth, the device just needs to be paired to the user’s mobile, PC or platform he wishes to connect to.

Upon first use, users will have to set a PIN. After the PIN is set, users can log on to or sign transactions via any FIDO2 enabled service.

Tap into FIDO’s interoperable and standardized ecosystem to deploy strong authentication for login and transaction validation without the incremental cost of in-house development.

FIDO certified products are supported out-of-the-box as they come out onto the market. 

Mobile Security Suite with FIDO is a FIDO UAF certified solution.

FIDO protocols use asymmetric public key cryptography. At registration, a private and public key pair is generated and the private key never leaves the device. As such, there are no server-side secrets to steal. There is also no linkability between services, which means that no information is provided that would allow user tracking.

Biometrics are never stored or matched on servers, and can only be stored and matched on a consumer’s device. 

FIDO capabilities are offered as part of the OneSpan Mobile Security Suite. This is a comprehensive developer toolkit (SDK) that natively integrates application security, FIDO authentication, and electronic signing into mobile applications. The Mobile Security Suite provides FIDO authentication and much more, including features such as geolocation, jailbreaking, device binding, and secure storage. 

Protect native apps against sophisticated mobile malware through app shielding and Runtime Application Self-Protection (RASP). Application shielding protects a mobile app from the inside out. It allows the app to securely operate even in potentially hostile environments, such as jailbroken or rooted devices – blocking malware and helping to prevent intrusion, tampering, and reverse-engineering. 

FIDO meets the requirements outlined in the revised Payment Services Directive (PSD2) Regulatory Technical Specifications (RTS). FIDO supports strong customer authentication and multi factor authentication, as well as dynamic linking for online and mobile payments (to protect against Man-in-the-Middle attacks).

FIDO meets GDPR compliance requirements by design. FIDO delivers authentication with no third party in the protocol, and no linkability or tracking between accounts and services. Server-side secrets are eliminated and local verification of data (e.g., PIN and biometrics) complies with the GDPR.