Online security
FireID offers greater ease of use in that the OTPs are conveniently generated on users’ mobile phones - something we have with us all the time. So there’s no need for key fobs or hardware tokens plus the passwords are generated out of band and cannot be intercepted by hackers.
In this day and age, identity theft and online fraud are challenges that are impossible to ignore for individuals as well as organisations. Thankfully, FireID is able to deliver unprecedented peace of mind by significantly reducing the risks involved with Internet transactions and accessing online resources.
The current use of static passwords is not the optimum solution:
- Simple or repeated passwords are easy to crack
- Users write down or store passwords near to their computer
- Key-loggers can capture a user’s key strokes
- “Tempest” methods can capture a user’s key strokes remotely from 20m away
One-time-passwords offer significantly improved security in that:
- An OTP is randomly generated for the user every time he/she needs to login
- Expires immediately once used
- The OTP cannot be predicted
Currently OTPs are generated either by key fobs or hardware tokens, or in the case of online banking, sent via SMS.
FireID offers a secure solution for convenient, strong authentication to an external user base accessing a web service or application, such as Internet banking, e-commerce sites, commercial portals or document repositories. The FireID token application can be deployed remotely and at no cost, via a self-signup process driven by the end-user. This makes it easy to deploy and manage, while integrating simply to your web infrastructure using RADIUS or XML-RPC.
