HID Global
Download PDF version Contact company

HID Global®, a worldwide leader in secure identity solutions, has enhanced its ActivID® authentication offering for digital banking with a push notification solution that gives financial institutions a secure channel and easy method for notifying customers about pending transactions on their phones or tablets, and then proceeding with execution after receiving their authorisation.

ActivID Trusted Transactions solution

“Customers are finding it increasingly difficult to differentiate between legitimate websites, emails, and phone calls originating from their own bank versus those created by fraudsters, making it more difficult for them to spot fraudulent transactions,” said Tim Phipps, vice president of product marketing, Identity Assurance with HID Global. “With our ActivID Trusted Transactions solution, banks can offer far more convenient out-of-band transaction notification and authorisation on mobile devices, which provides customers real-time alerts prior to a suspicious transaction being applied to their account. This places the control back in the customer’s hands by providing them with simple way to confirm the legitimacy of a pending transaction.”

Financial institutions using mobile banking channels have typically relied on simple passwords or out-of-band transaction verification based on one time passwords (OTP) tokens sent via SMS to customers’ mobile devices. Cybercriminals have attacked the end-user’s web browser or this insecure OTP authentication method with SMS malware to take over accounts and make unauthorised transactions, such as large money transfers. These attacks use a variety of phishing, vishing, SMS malware, man-in-the-middle and man-in-the-browser techniques and have eroded consumer confidence in digital banking.

ActivID Authentication Server

To solve this problem, HID Global’s “phone as a token” out-of-band verification solution uses transaction signing with private key cryptography over a trusted and secure electronic channel. All communication is encrypted with mutual authentication between the user’s mobile device and the financial institution’s online banking application. Transaction non-repudiation is ensured by generating the private key outside the financial institution’s backend system and then protecting it to prevent extraction, cloning or access from another application. When a transaction is initiated, the ActivID Authentication Server uses its Mobile Push capability to send an authorisation notification to the user’s registered mobile device with all relevant information and a request to accept or reject it using the server’s ActivID Mobile Signing Software Developer Kit (SDK). Signed responses are returned to the server, which validates and forwards them to the online banking system to grant or deny transactions.

"Trust, total cost of ownership (TCO) and user experience (UX) vary among individual phone-as-a-token methods. Out-of-band (OOB) authentication using push modes offers the best balance of trust and UX, making it the best choice across many use cases," said Ant Allan, analyst with Gartner.

Availability

HID Global’s ActivID Trusted Transactions with Mobile Push capability is available now with the company’s latest ActivID Authentication Server v7.3 release.

Download PDF version Download PDF version

HID Global news

HID Global’s PKI-as-a-Service (PKIaaS) platform simplifies certificate automation with support for Microsoft autoenrollment protocol

Automating the issuance of all enterprise public or private trusted digital certificates through a single platform reduces the risk of certificate mismanagement and associated outages. HID Global, a pioneer in trusted identity solutions, has simplified certificate automation for any Microsoft Active Directory-managed network devices with its PKI-as-a-Service (PKIaaS) platform. Customers can seamlessly issue, renew, replace or revoke certificates automatically with Microsoft Autoenrollment now...

HID Global announces that their Crescendo smart card family supports iCLASS credential technology

HID Global, a provider of trusted identity solutions, announces that its HID Crescendo® smart card family now supports HID® iCLASS® credential technology. The cards enable users to seamlessly unlock doors, data and their computers via a single high-assurance authenticator that supports an organisation’s zero trust security strategy. HID Global is a pioneer in seamless, converged physical and cyber workplace access. It has now extended the benefits of its HID Crescendo cards as...

ASSA ABLOY to showcase door security and access control solutions at the GSX 2021

ASSA ABLOY’s presence at the 2021 Global Security Exchange (GSX) will focus on helping attendees identify opportunities to improve the safety, security and health of their facilities. Visit Booth #1353 to see the latest innovations in comprehensive door security and access control.    “Amid the health, economic, natural, and social crises we’ve experienced in the past 18 months, the role that security plays in creating safe and healthy environments is more critical t...

HID Global case studies

Avolon selects HID mobile access® to upgrade headquarter security

Founded in 2010, Avolon is the third-largest aircraft leasing company in the world with 824 aircraft and 145 customers in 62 countries. Its new global headquarters in Dublin is comprised of 6,967 sq m (75,000 sq ft) of secure office space across six floors that houses its IT, catering, legal, and communications departments. Need for a centralised monitoring solution Avolon’s new premises in the upmarket Ballsbridge area of Dublin provided an opportunity for the company to rethink its app...

The Very Group, a global retail powerhouse, deploys Genetec security solutions to safeguard its new, purpose-built facility

The Very Group is the UK’s largest integrated digital retailer and financial services provider. It offers 1,900 brands to its four million customers globally. Due to the company’s growth, they built a new state-of-the-art fulfilment centre, close to one million square feet in size, in order to centralise operations and drive efficiency. Purpose-built and automated facility The Very Group has historically operated from three fulfilment centres, located in the north of England. Due t...

HID Global enhances campus safety at Vanderbilt University by offering HID Mobile Access on iPhone & Apple Watch

Embracing the benefits of touchless access using smartphones, Vanderbilt University expanded its investment into campus safety and security, by leveraging HID Mobile Access to deploy campus IDs on iPhone and Apple Watch via Apple Wallet. The enhancement builds upon the university’s initial investment in mobile-enabled technologies from HID Global. These technologies capitalised on the ubiquitous nature of smartphones and mobile devices among students, 90 percent of whom reside on campus t...