Mobile Token

READ MORE

Key features of Mobile Token

Mobile Token offers an advanced user authentication experience

  • Mobile Token Self Management
    • enables users to self-manage and enroll multiple tokens from Asseco Mobile Token application
    • remote application deblocking
    • lockout-proof token migration
  • Push Signing – instantly receive data on your smartphone to be signed via push notifications
  • QR Code support – a simple user experience with Scan to Activate, Scan to Login and Scan to Sign, it runs offline as well
  • Biometric authentication – face or fingerprint recognition for mobile apps
  • Sign What You See – brings transparency to the end users by means of displaying all the data to be signed on the smartphone screen
  • Developed for the latest iOS and Android devices

Security features

  • Multi-factor authentication
  • RASP (runtime application self protection)
  • PIN is not checked or stored on a mobile device
  • User-defined PIN and PIN hinting
  • Brute force attack avoidance
  • Keylogger protection and shuffle keyboard
  • Storing token data in a mobile platform secure environment
  • Secure communication channel encription
  • Code obfuscation in order to prevent or deter reverse engineering attempts
  • Authentication methods which prevent Man in the Middle (MitM)/Man in the Browser (MiTB) and Phishing attacks

More info about RASP

  • RASP (Runtime application self protection) is a security mechanism that enables the application to detect malicious activity or attacks in real-time and adapt the behavior of the application to protect itself.
  • Some of the mechanism used in our RASP solutions are:
    • Root/Jailbreak detection – detection if the application is running in the unfriendly (rooted/jailbroken) environment and adapt the behavior of application accordingly.
    • Emulator detection – detection if the app is running in the emulator and adapt the behavior of the application accordingly
    • Debug detection – detection if the application is being debugged and protection from getting any secret data
    • Boolean obfuscation/encryption – all Booleans are evaluated dynamically based on an algorithm to prevent simple Boolean change to affect application flow
    • Screenshot protection – protection from user/system screenshots, and saving screenshots by the operating system
    • Hook/Stacktrace detection – detection if blacklisted libraries are loaded/sideloaded into the application boot process
    • Tapjacking protection – protection from stealing user taps of confidential data

Supported platforms

  • iOS 8x +
  • Android OS 4.4.4+

Key benefits

  • Compliant with security standards worldwide
  • Flexibility and customization
  • Advanced UX with PUSH and QR
  • Turnkey solution
  • Cost effective

Get in touch

Please enter your first name

Please enter your last name

Please enter your company

Please enter your e-mail

Please enter your inquiry

Download datasheet

Please enter your first name

Please enter your last name

Please enter your company

Please enter your title

Please enter your e-mail

Please enter your phone number

Please enter your country/region