Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

3/17/2010
08:21 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

FireID Launches Mobile Two-Factor Authentication Platform For Online And Mobile Banking

FireID Authentication Platform for Banks protects financial transactions against sophisticated threats

Stellenbosch, South Africa—March 16, 2010—FireID, Inc., a leading provider of world-class security applications for mobile authentication, today announced the FireID Authentication Platform for Banks.

The most comprehensive authentication solution for the banking industry, the FireID Authentication Platform for Banks provides transaction verification, authentication for mobile and online banking, and internal VPN access for bank use. Using something the end-user already has, a mobile phone, FireID protects financial transactions against sophisticated threats " including man-in-the-browser attacks " and ensures that only legitimate payments are made.

According to a recent study conducted by Javelin Strategy & Research, 99 million U.S. adults will conduct mobile banking transactions by 2014. Further, Javelin's research shows that mobile authentication can actually help mitigate the risk of fraud across all banking channels, from ATM to branch. Collectively, new account and existing account identity fraud adds up to $48 billion, with an average per-victim cost of nearly $550.

"Having just returned from the Mobile World Congress conference in Barcelona, we've confirmed that the U.S. is closely following the trend in South America and EMEA, where mobile banking is a foregone conclusion," said Jenny Dugmore, CEO of FireID. "FireID's Authentication provides banks and their users with an efficient, convenient solution that significantly reduces the risks involved with Internet financial transactions and accessing online resources. We look forward to helping banks safeguard their customers' sensitive financial transactions so they can confidently deploy mobile and online services for competitive differentiation in the marketplace."

FireID provides banking transactions through groundbreaking authentication solutions that allow users to login securely and conveniently to almost anything that requires personal authentication, without the need to remember passwords. The FireID Platform eliminates the need for hardware tokens by generating secure one-time passwords (OTP) on users' mobile phones, with no network connectivity required, to provide strong security for sensitive financial transactions.

The OATH-compliant FireID Platform allows for easy integration with other OATH authentication engines, while also offering its own powerful authentication engine. It combines multiple mobile two-factor authentication solutions that can be used by banks either individually or together, and transparently appear as one application on the user's phone that can be easily customized to reflect bank-selected branding.

Through its new Authentication Platform for Banks, FireID uniquely and elegantly addresses the authentication issues confronting banks, including:

  • Transaction verification—secures payments and transactions against sophisticated attack methods for thwarting two-factor authentication, including man-in-the-browser attacks. In this kind of attack, a hacker manipulates a legitimately authenticated end-user's browser to create fake banking transactions. The FireID application generates a unique verification code for each transaction that is verified by the server for authenticity. If an attacker attempts to change any details, the verification code is rendered invalid and the server will reject the transaction.

  • Mobile banking authentication—generates an OTP and automatically authenticates the user into a secure site via the phone's web browser, without the need to switch between applications.

  • Online banking strong authentication—generates an OTP on the user's mobile phone, out-of-band (with no network connectivity required), when online banking login is required.

  • Bank VPN Access Authentication—protects against unauthorized access into the bank's corporate network and facilitates access-related compliance with banking industry regulations. As soon as the remote user logs in, the one-time password expires and cannot be used again.

    For additional details about the FireID Authentication Platform for Banks, please visit: http://www.fireid.com/products/

    About FireID

    FireID is a leading provider of mobile two-factor authentication. Founded in 2006, FireID is located in Stellenbosch, South Africa and has offices in the USA and UK with a broad international network of distributors and resellers. With increased transaction fraud and identity theft, strong authentication has become an essential component for any online or mobile application. FireID's world-class authentication solutions meet the growing authentication needs of corporations, government agencies and end-users who require highly secure and convenient online access to password protected accounts. For more information, visit http://www.fireid.com.

    David McKee

    Director

    Senior Media Strategy

    Schwartz Communications Work -(781) 684-0770

    BB - (781) 301-1021 [email protected]

    www.schwartz-pr.com

    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    Commentary
    Ransomware Is Not the Problem
    Adam Shostack, Consultant, Entrepreneur, Technologist, Game Designer,  6/9/2021
    Edge-DRsplash-11-edge-ask-the-experts
    How Can I Test the Security of My Home-Office Employees' Routers?
    John Bock, Senior Research Scientist,  6/7/2021
    News
    New Ransomware Group Claiming Connection to REvil Gang Surfaces
    Jai Vijayan, Contributing Writer,  6/10/2021
    Register for Dark Reading Newsletters
    White Papers
    Video
    Cartoon Contest
    Write a Caption, Win an Amazon Gift Card! Click Here
    Latest Comment: This comment is waiting for review by our moderators.
    Current Issue
    The State of Cybersecurity Incident Response
    In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
    Flash Poll
    How Enterprises are Developing Secure Applications
    How Enterprises are Developing Secure Applications
    Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    CVE-2021-20027
    PUBLISHED: 2021-06-14
    A buffer overflow vulnerability in SonicOS allows a remote attacker to cause a Denial of Service (DoS) by sending a specially crafted request. This vulnerability affects SonicOS Gen5, Gen6, Gen7 platforms, and SonicOSv virtual firewalls.
    CVE-2021-32684
    PUBLISHED: 2021-06-14
    magento-scripts contains scripts and configuration used by Create Magento App, a zero-configuration tool-chain which allows one to deploy Magento 2. In versions 1.5.1 and 1.5.2, after changing the function from synchronous to asynchronous there wasn't implemented handler in the start, stop, exec, an...
    CVE-2021-34693
    PUBLISHED: 2021-06-14
    net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
    CVE-2021-27887
    PUBLISHED: 2021-06-14
    Cross-site Scripting (XSS) vulnerability in the main dashboard of Ellipse APM versions allows an authenticated user or integrated application to inject malicious data into the application that can then be executed in a victim’s browser. This issue affects: Hitachi ABB Power Grids ...
    CVE-2021-27196
    PUBLISHED: 2021-06-14
    Improper Input Validation vulnerability in Hitachi ABB Power Grids Relion 670 Series, Relion 670/650 Series, Relion 670/650/SAM600-IO, Relion 650, REB500, RTU500 Series, FOX615 (TEGO1), MSM, GMS600, PWC600 allows an attacker with access to the IEC 61850 network with knowledge of how to reproduce the...