Mobile Token

READ MORE

Key features of Mobile Token

Mobile Token offers an advanced user authentication experience

  • Mobile Token Self Management
    • enables users to self-manage and enroll multiple tokens from Asseco Mobile Token application
    • remote application deblocking
    • lockout-proof token migration
  • Push Signing – instantly receive data on your smartphone to be signed via push notifications
  • QR Code support – a simple user experience with Scan to Activate, Scan to Login and Scan to Sign, it runs offline as well
  • Biometric authentication – face or fingerprint recognition for mobile apps
  • Sign What You See – brings transparency to the end users by means of displaying all the data to be signed on the smartphone screen
  • Developed for the latest iOS and Android devices

Security features

  • Multi-factor authentication
  • RASP (runtime application self protection)
  • PIN is not checked or stored on a mobile device
  • User-defined PIN and PIN hinting
  • Brute force attack avoidance
  • Keylogger protection and shuffle keyboard
  • Storing token data in a mobile platform secure environment
  • Secure communication channel encription
  • Code obfuscation in order to prevent or deter reverse engineering attempts
  • Authentication methods which prevent Man in the Middle (MitM)/Man in the Browser (MiTB) and Phishing attacks

More info about RASP

  • RASP (Runtime application self protection) is a security mechanism that enables the application to detect malicious activity or attacks in real-time and adapt the behavior of the application to protect itself.
  • Some of the mechanism used in our RASP solutions are:
    • Root/Jailbreak detection – detection if the application is running in the unfriendly (rooted/jailbroken) environment and adapt the behavior of application accordingly.
    • Emulator detection – detection if the app is running in the emulator and adapt the behavior of the application accordingly
    • Debug detection – detection if the application is being debugged and protection from getting any secret data
    • Boolean obfuscation/encryption – all Booleans are evaluated dynamically based on an algorithm to prevent simple Boolean change to affect application flow
    • Screenshot protection – protection from user/system screenshots, and saving screenshots by the operating system
    • Hook/Stacktrace detection – detection if blacklisted libraries are loaded/sideloaded into the application boot process
    • Tapjacking protection – protection from stealing user taps of confidential data

Supported platforms

  • iOS 8x +
  • Android OS 4.4.4+

Key benefits

  • Compliant with security standards worldwide
  • Flexibility and customization
  • Advanced UX with PUSH and QR
  • Turnkey solution
  • Cost effective

We're here to help if you have any questions or doubts. Please leave your contact details and we will get back to you shortly.

Please enter your first name

Please enter your last name

Please enter your company

Please enter your e-mail

Please enter your inquiry

Download datasheet

Please enter your first name

Please enter your last name

Please enter your company

Please enter your title

Please enter your e-mail

Please enter your phone number

Please enter your country/region