HID Global

HID Global®, a worldwide leader in secure identity solutions, has enhanced its ActivID® authentication offering for digital banking with a push notification solution that gives financial institutions a secure channel and easy method for notifying customers about pending transactions on their phones or tablets, and then proceeding with execution after receiving their authorisation.

ActivID Trusted Transactions solution

“Customers are finding it increasingly difficult to differentiate between legitimate websites, emails, and phone calls originating from their own bank versus those created by fraudsters, making it more difficult for them to spot fraudulent transactions,” said Tim Phipps, vice president of product marketing, Identity Assurance with HID Global. “With our ActivID Trusted Transactions solution, banks can offer far more convenient out-of-band transaction notification and authorisation on mobile devices, which provides customers real-time alerts prior to a suspicious transaction being applied to their account. This places the control back in the customer’s hands by providing them with simple way to confirm the legitimacy of a pending transaction.”

Financial institutions using mobile banking channels have typically relied on simple passwords or out-of-band transaction verification based on one time passwords (OTP) tokens sent via SMS to customers’ mobile devices. Cybercriminals have attacked the end-user’s web browser or this insecure OTP authentication method with SMS malware to take over accounts and make unauthorised transactions, such as large money transfers. These attacks use a variety of phishing, vishing, SMS malware, man-in-the-middle and man-in-the-browser techniques and have eroded consumer confidence in digital banking.

ActivID Authentication Server

To solve this problem, HID Global’s “phone as a token” out-of-band verification solution uses transaction signing with private key cryptography over a trusted and secure electronic channel. All communication is encrypted with mutual authentication between the user’s mobile device and the financial institution’s online banking application. Transaction non-repudiation is ensured by generating the private key outside the financial institution’s backend system and then protecting it to prevent extraction, cloning or access from another application. When a transaction is initiated, the ActivID Authentication Server uses its Mobile Push capability to send an authorisation notification to the user’s registered mobile device with all relevant information and a request to accept or reject it using the server’s ActivID Mobile Signing Software Developer Kit (SDK). Signed responses are returned to the server, which validates and forwards them to the online banking system to grant or deny transactions.

"Trust, total cost of ownership (TCO) and user experience (UX) vary among individual phone-as-a-token methods. Out-of-band (OOB) authentication using push modes offers the best balance of trust and UX, making it the best choice across many use cases," said Ant Allan, analyst with Gartner.

Availability

HID Global’s ActivID Trusted Transactions with Mobile Push capability is available now with the company’s latest ActivID Authentication Server v7.3 release.

Share with LinkedIn Share with Twitter Share with Facebook Share with Facebook
Download PDF version Download PDF version

HID Global news

HID Global announces release of its HID SAFE physical identity and access management solution for hybrid workplaces

As businesses move to hybrid remote and in-person workplaces while complying with evolving public-health mandates, they must manage a dynamic enterprise environment with more complex safety and security challenges. HID SAFE Facility and Risk Analytics HID Global, a globally renowned company in trusted identity solutions, has announced its HID SAFE Facility and Risk Analytics solution that improves efficiency, agility and flexibility in hybrid workplaces through real-time occupancy monitoring,...

SALTO’s XS4 One Deadlatch brings electronic access control to commercial aluminum-framed glass doors

The SALTO XS4 One Deadlatch (DL) is a revolutionary stand-alone electronic lock thanks largely to the level of technology packed inside that brings together the convenience of a smart stand-alone access point - easy to retrofit, install, and no wires - with virtually the same power and performance of an online traditional access control point. This innovation brings electronic access control and convenience to a number of retail and commercial operations that commonly use aluminum-framed glass...

Looking back at 2020: Security industry rises to meet the pandemic challenges

The coronavirus pandemic had a monumental impact on all aspects of the business world, including the security industry. However, amid the gloom and doom, many security professionals also saw opportunity: New ways the industry’s products could be applied to address the challenges of coping with the virus. This article will review some of those opportunities, based on our reporting throughout the year and including links back to the original articles. During and after the pandemic, security...

HID Global case studies

Genetec employed by retail powerhouse The Very Group to safeguard its new purpose-built fulfilment centre

The Very Group is the UK’s largest integrated digital retailer and financial services provider. It offers 1,900 brands to its four million customers. Due to the company’s growth, it built a new state-of-the-art fulfilment centre - close to one million square feet - to centralise operations and drive efficiency. The Very Group has historically operated from three fulfilment centres in the north of England. Due to the business’ growth, it needed a new, purpose-built and automate...

HID Global provides mobile access solution for physical access at Avolon headquarters in Dublin

HID Global, a pioneer in trusted identity solutions, announces that aerospace company Avolon has selected the HID Mobile Access® solution for physical access at its headquarters in Dublin and other locations worldwide. Powered by HID’s award-winning Seos® credential technology, the solution enables Avolon to issue staff Mobile IDs to smartphones for building access and provides an efficient management platform for its global network of offices. Maintaining secure perimeter Avolo...

HID Global provides Mobile Access solution to Avolon to create secure and convenient employee experiences

HID Global, a worldwide provider of trusted identity solutions, announced that popular aerospace company Avolon has selected the HID Mobile Access solution for physical access at its headquarters in Dublin and other locations worldwide. Powered by HID’s award-winning Seos credential technology, the solution enables Avolon to issue staff Mobile IDs to smartphones for building access and provides an efficient management platform for its global network of offices. Avolon is one of the world&...