Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


08:21 PM
Dark Reading
Dark Reading
Products and Releases

FireID Launches Mobile Two-Factor Authentication Platform For Online And Mobile Banking

FireID Authentication Platform for Banks protects financial transactions against sophisticated threats

Stellenbosch, South Africa—March 16, 2010—FireID, Inc., a leading provider of world-class security applications for mobile authentication, today announced the FireID Authentication Platform for Banks.

The most comprehensive authentication solution for the banking industry, the FireID Authentication Platform for Banks provides transaction verification, authentication for mobile and online banking, and internal VPN access for bank use. Using something the end-user already has, a mobile phone, FireID protects financial transactions against sophisticated threats " including man-in-the-browser attacks " and ensures that only legitimate payments are made.

According to a recent study conducted by Javelin Strategy & Research, 99 million U.S. adults will conduct mobile banking transactions by 2014. Further, Javelin's research shows that mobile authentication can actually help mitigate the risk of fraud across all banking channels, from ATM to branch. Collectively, new account and existing account identity fraud adds up to $48 billion, with an average per-victim cost of nearly $550.

"Having just returned from the Mobile World Congress conference in Barcelona, we've confirmed that the U.S. is closely following the trend in South America and EMEA, where mobile banking is a foregone conclusion," said Jenny Dugmore, CEO of FireID. "FireID's Authentication provides banks and their users with an efficient, convenient solution that significantly reduces the risks involved with Internet financial transactions and accessing online resources. We look forward to helping banks safeguard their customers' sensitive financial transactions so they can confidently deploy mobile and online services for competitive differentiation in the marketplace."

FireID provides banking transactions through groundbreaking authentication solutions that allow users to login securely and conveniently to almost anything that requires personal authentication, without the need to remember passwords. The FireID Platform eliminates the need for hardware tokens by generating secure one-time passwords (OTP) on users' mobile phones, with no network connectivity required, to provide strong security for sensitive financial transactions.

The OATH-compliant FireID Platform allows for easy integration with other OATH authentication engines, while also offering its own powerful authentication engine. It combines multiple mobile two-factor authentication solutions that can be used by banks either individually or together, and transparently appear as one application on the user's phone that can be easily customized to reflect bank-selected branding.

Through its new Authentication Platform for Banks, FireID uniquely and elegantly addresses the authentication issues confronting banks, including:

  • Transaction verification—secures payments and transactions against sophisticated attack methods for thwarting two-factor authentication, including man-in-the-browser attacks. In this kind of attack, a hacker manipulates a legitimately authenticated end-user's browser to create fake banking transactions. The FireID application generates a unique verification code for each transaction that is verified by the server for authenticity. If an attacker attempts to change any details, the verification code is rendered invalid and the server will reject the transaction.

  • Mobile banking authentication—generates an OTP and automatically authenticates the user into a secure site via the phone's web browser, without the need to switch between applications.

  • Online banking strong authentication—generates an OTP on the user's mobile phone, out-of-band (with no network connectivity required), when online banking login is required.

  • Bank VPN Access Authentication—protects against unauthorized access into the bank's corporate network and facilitates access-related compliance with banking industry regulations. As soon as the remote user logs in, the one-time password expires and cannot be used again.

    For additional details about the FireID Authentication Platform for Banks, please visit: http://www.fireid.com/products/

    About FireID

    FireID is a leading provider of mobile two-factor authentication. Founded in 2006, FireID is located in Stellenbosch, South Africa and has offices in the USA and UK with a broad international network of distributors and resellers. With increased transaction fraud and identity theft, strong authentication has become an essential component for any online or mobile application. FireID's world-class authentication solutions meet the growing authentication needs of corporations, government agencies and end-users who require highly secure and convenient online access to password protected accounts. For more information, visit http://www.fireid.com.

    David McKee


    Senior Media Strategy

    Schwartz Communications Work -(781) 684-0770

    BB - (781) 301-1021 [email protected]


    Comment  | 
    Print  | 
    More Insights
  • Comments
    Newest First  |  Oldest First  |  Threaded View
    How to Better Secure Your Microsoft 365 Environment
    Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
    Attackers Leave Stolen Credentials Searchable on Google
    Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
    Register for Dark Reading Newsletters
    White Papers
    Cartoon Contest
    Write a Caption, Win an Amazon Gift Card! Click Here
    Latest Comment: This comment is waiting for review by our moderators.
    Current Issue
    2020: The Year in Security
    Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
    Flash Poll
    Assessing Cybersecurity Risk in Today's Enterprises
    Assessing Cybersecurity Risk in Today's Enterprises
    COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
    Twitter Feed
    Dark Reading - Bug Report
    Bug Report
    Enterprise Vulnerabilities
    From DHS/US-CERT's National Vulnerability Database
    PUBLISHED: 2021-01-28
    IBM MQ 7.5, 8.0, 9.0, 9.1, 9.2 LTS, and 9.2 CD could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization of trusted data. An attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 186509.
    PUBLISHED: 2021-01-28
    IBM QRadar SIEM 7.4.0 to 7.4.2 Patch 1 and 7.3.0 to 7.3.3 Patch 7 could allow a remote attacker to execute arbitrary commands on the system, caused by insecure deserialization of user-supplied content by the Java deserialization function. By sending a malicious serialized Java object, an attacker co...
    PUBLISHED: 2021-01-28
    A cross-site request forgery vulnerability exists in the GACL functionality of OpenEMR 5.0.2 and development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6ce). A specially crafted HTTP request can lead to the execution of arbitrary requests in the context of the victim. An attacker can...
    PUBLISHED: 2021-01-28
    Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
    PUBLISHED: 2021-01-28
    Cross-site request forgery (CSRF) vulnerability in Aterm WG2600HP firmware Ver1.0.2 and earlier, and Aterm WG2600HP2 firmware Ver1.0.2 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.