 |
|
|
|
|
|
|
Home |
Search
|
Sitemap
|
Feedback
|
Cesky
|
| Company | Products | Services | |||||
|
|
|
| Security |  |
| Applications | | Security | | Hardware | | Case Studies |
 |
 | ||
| ||
| ||
| ||
Mobile authentication
Mobile authentication is based on the principle of same codes, as with
tokens. The codes are
sent to users through a secure distribution channel, such as
OfficeLine SIM
Toolkit. An advantage of this solution is that the user does not have to own any specialized
device (a mobile phone supporting SIM Toolkit is sufficient).
Mobile authentication is suitable for the
Internet banking
distribution channel.
Code table
A code table is distributed either printed on paper, or in electronic form (as a text file).
The code table usually contains 100 codes in total (the number of codes can be different if
requested by the customer); each of the codes has its own number.
A code table is used to authorize transactions: the client submits a transaction together with
the code located on a certain position in the table according to the number required by the system.
When the system receives the submitted transaction request, it will compare the code entered by the
client with the code located in the code table record that is stored in its database. If the codes
match, the transaction is authorized.
Each code from a code table is usable only once. The table loses its validity at the moment
when 50% of the codes have been used. After that, the owner has to start using a new code table.
The new table is usually sent in advance in a
secured
envelope or via
e-mail (encrypted).
The client enters a code according to the number required by the system.
A code table is suitable for use within the
Internet Banking and
IVR distribution
channels to ensure a basic level of security.
Grid card
A grid card is a plastic card the size of a credit card. The grid card contains a table
divided into 6 rows (A to F) and 6 columns (1 to 6). Each table cell contains one code.
A grid card is used to authorize transactions: the client submits a transaction together with
the code that is located on certain coordinates required by the system. When the system receives
the submitted transaction request, it compares the code entered by the client with the code located
in the grid card record that is stored in its database. If the codes match, the transaction is
authorized.
The codes may be used repeatedly. The validity of a grid card is time-limited. When the grid
card expires, the owner has to start using a new grid card. Grid cards are usually distributed in a
similar way as credit/debit cards.
A grid card is suitable for use within the
Internet banking and
IVR distribution
channels to ensure a basic level of security.
Password
A password, or a PIN, represents a universal security feature that can be used to verify a
client's identity or to authorize transactions using various distribution channels (such as
GSM
Banking,
IVR, or
Internet
Banking). Its use is advantageous especially when there is a need for a simple security
feature whose use is not limited to any special device. However, the use of a password meets only
the basic requirements for security.
To increase the security of a password, a system can in some cases (depending on the
capabilities of the communications technology) require only randomly selected characters from the
password.