Register for a Callback or an Evaluation



PINsafe

Mobile Based Authentication


Business is going mobile.

Today’s agile organisations need to give their key people access to all their information and communication services, at any time, anywhere they happen to be. With voice, data, video and a world of additional resources converging onto unified networks, companies with true mobility are gaining sustainable competitive advantage.

The mobile phone is already a business critical tool, and using this device as a basis for authentications produces a solution with low incremental management costs as the device is already being managed. Also the mobile phone is a personal device, the loss or failure of which is addressed immediately by the user.

  • Fast to deploy - Nothing to distribute/reclaim - reduces overhead/implementation costs
  • Nothing to buy
  • SMS is a globally used communication tool and requires no IT literacy
  • Facilitates mobility and business enablement

SMS

The user receives a randomly generated security string via SMS. They then use their PIN to extract their one-time code (OTC). This becomes their authentication credential.

This PINsafe interface provides true two-factor authentication as the security string can only be accessed by the user's registered mobile phone and had the additional security that the two key elements of the authentication process are not transmitted on the same network.

The SMS option can be implemented in a number of modes.

On-Demand
At the time of authentication the user requests a security string to be sent to them, usually via a button on an authentication form. The security string is only valid for a finite period

Automatic
The user is sent a new security string after every authentication attempt, thus ensuring that the user always has the next security string in their inbox ready to use for their next authentication.

Multi-String
This is a variation of the Automatic mode, where a user is sent a number of security strings in each SMS message; the user uses each string in turn (from Version 3.6 the user will be told which one to use). When they have used the last one a new one is sent to them. This has the benefit of reducing the SMS costs and also means the user can have a number of security strings available to them even when they are out of GPRS coverage.

Java Midlet

A simple Java (MIDP2.0) application that can download and store 99 security strings from the PINsafe server. This means authentication is possible even during prolonged time outside mobile network coverage. The user enters their PIN into the phone keypad and the midlet extracts their OTC for them. The user can download a new batch of 99 strings at any time.

Information
  • PINsafe
  • Overview
  • Mobile Based Authentication
  • Browser Based
  • Download PINsafe Datasheet
    •  
    E-Manage Ltd   Tel: 0845 2600 44 6   Fax: 0845 2600 44 7   Email: info@e-manage.co.uk   Copyright © 2010.
    Home Page Resource Centre