Digipass FIDO Touch (FIDO2)
Simplify customer experience
Passwordless browser login
Log on securely to online services and perform banking transactions via mobile or desktop with Digipass FIDO Touch. Digipass FIDO Touch works out-of the-box with any FIDO2 enabled service
Passwordless login to Windows and Microsoft Azure AD 365
Digipass FIDO Touch replaces the username and password combo to sing-in to Windows 10 and the cloud version of Microsoft Azuez AD 365.
Minimize security risks via regular platform updates and automated security updates
Frictionless and intuitive user experience
Digipass FIDO Touch comes with a touch screen enabling a intuitive user experience. Digipass FIDO Touch will work with any FIDO2 enabled service without requiring the user to download drivers or software.
Enhanced Security
FIDO2 certified
Digipass FIDO Touch is a FIDO2 certified solution enabling passwordless authentication directly in the browser. FIDO2 protocols are backwards compatible with FIDO UAF, so you can easily deploy Digipass FIDO Touch together with our Mobile Security Suite with FIDO.
Eliminate shared secrets
FIDO protocols use asymmetric public key cryptography. At registration, a private and public key pair is generated and the private key never leaves the device. As such, there are no server-side secrets to steal. There is also no linkability between services, which means that no information is provided that would allow user tracking
PIN as second factor
Digipass FIDO Touch is a PIN protected device. PIN codes are entered via the device’s touch screen and are therefore never exposed over any network. The solution protects against a variety of known and potential attacks, including PIN brute-force attacks. After too many incorrect guesses, the device is locked.
Compliance
PSD2
FIDO meets the requirements outlined in the revised Payment Services Directive (PSD2) Regulatory Technical Specifications (RTS). Digipass FIDO Touch satisfies the possession factor and the local PIN verification constitutes a second factor as mandated by PSD2. Digipass FIDO Touch equally supports dynamic linking for transaction authorization as transaction details can be presented on the display for user approval.
GDPR
FIDO meets GDPR compliance requirements by design. FIDO delivers authentication with no third party in the protocol, and no linkability or tracking between accounts and services. Server-side secrets are eliminated and local verification of data (e.g., PIN and biometrics) complies with the GDPR.
Easy to setup
USB or Bluetooth
Digipass FIDO Touch works in connected mode via USB and unconnected mode via Bluetooth so users can select their preferred authentication mode. Simply plug in the device via USB . To enable Bluetooth, the device just needs to be paired to the user’s mobile, PC or platform he wishes to connect to.
PIN entry
Upon first use, users will have to set a PIN. After the PIN is set, users can log on to or sign transactions via any FIDO2 enabled service.
Cost-efficient solution
Open standards reduce development costs
Tap into FIDO’s interoperable and standardized ecosystem to deploy strong authentication for login and transaction validation without the incremental cost of in-house development.
Faster time to market
FIDO certified products are supported out-of-the-box as they come out onto the market.
Digipass SecureClick (FIDO U2F)
Security
FIDO U2F Certified Device
Digipass® SecureClick is a FIDO U2F BLE (Bluetooth Low Energy) device that enables users to securely access their online applications by adding a second factor to strengthen the authentication process.
Multi Factor Authentication (MFA)
Digipass SecureClick leverages proven multi factor authentication technology to protect online accounts at the push of a button. Users simply log in to the website and enter their password. They then push the button on their Digipass SecureClick and the login process is complete.
Encrypted Communication
All communication between Digipass SecureClick and the Bluetooth Bridge is encrypted. As a result, Digipass SecureClick protects even the most sensitive mobile transactions while delivering lightning fast user connectivity.
Bluetooth and USB Dongle
Digipass Bluetooth Bridge
For PCs that do not support Bluetooth, OneSpan offers a Bluetooth Bridge in a USB dongle. Inserting the dongle into the USB port of a computer pairs Digipass SecureClick with the Bluetooth Bridge, enabling it to be used as a FIDO U2F USB device.
Mobile Security Suite with FIDO (FIDO UAF)
Security
FIDO UAF Certified
Mobile Security Suite with FIDO is a FIDO UAF certified solution.
Eliminates Shared Secrets
FIDO protocols use asymmetric public key cryptography. At registration, a private and public key pair is generated and the private key never leaves the device. As such, there are no server-side secrets to steal. There is also no linkability between services, which means that no information is provided that would allow user tracking.
Biometrics
Biometrics are never stored or matched on servers, and can only be stored and matched on a consumer’s device.
Additional Risk Scoring Security Features
FIDO capabilities are offered as part of the OneSpan Mobile Security Suite. This is a comprehensive developer toolkit (SDK) that natively integrates application security, FIDO authentication, and electronic signing into mobile applications. The Mobile Security Suite provides FIDO authentication and much more, including features such as geolocation, jailbreaking, device binding, and secure storage.
App Shielding
Protect native apps against sophisticated mobile malware through app shielding and Runtime Application Self-Protection (RASP). Application shielding protects a mobile app from the inside out. It allows the app to securely operate even in potentially hostile environments, such as jailbroken or rooted devices – blocking malware and helping to prevent intrusion, tampering, and reverse-engineering.
Compliance
PSD2
FIDO meets the requirements outlined in the revised Payment Services Directive (PSD2) Regulatory Technical Specifications (RTS). FIDO supports strong customer authentication and multi factor authentication, as well as dynamic linking for online and mobile payments (to protect against Man-in-the-Middle attacks).
GDPR
FIDO meets GDPR compliance requirements by design. FIDO delivers authentication with no third party in the protocol, and no linkability or tracking between accounts and services. Server-side secrets are eliminated and local verification of data (e.g., PIN and biometrics) complies with the GDPR.