Security for electronic transactions
InfoTOKEN
Companies today have been facing an unprecedent number of online frauds much more daring and sophisticated than ever.
Companies and institutions have the immediate need to not only reduce the number of frauds in transactions, but also to keep the confidence of their clients as high as possible.
InfoSERVER, provider of innovative IT solutions, launches the highest security level for access: the InfoTOKEN Celular solution.
InfoTOKEN celular is a revolutionary solution that brings to the market the strong password necessary for the user to validate his/her electronic transactions and operations. The solution is based on the highest security standard in the market, the OATH (Open Authentication), and its functionalities include:
- Protection of the identity of users who access information and carry out transactions in network environments (internet or corporate).
- Multiple factor authentication available for the benefit of the user considering the security while accessing applications.
InfoTOKEN is equipped with a unique system, the OTPCenter, which generates, administers, validates and distributes temporary passwords via SMS to any cell phone available in the market. It also operates generating OTP in the OATH standard to other mobile devices such as physical Token, USB Token, Black Berry, Display Card, among others.
OATH – Open Authentication
This initiative was created by some Enterprise Companies which contributes to publish and define some rules looking for interoperability using strong authentication mechanisms.
The InfoTOKEN Architecture is strongly based on this initiative.
| oath vision |
oath ecosystem |
 |
 |
InfoTOKEN unique features
• Absolute security through disposable passwords
• SMS available on the cell phone to validate
• Compatible with both CDMA and GSM technologies
• Suitable for banking, industrial and commercial solutions
• The solution supports nearly all cell phones in the market
• For corporate and/or end user purposes
• Secure and automatic installation process
• Client Authentication: for Windows, VPN, Citrix and OWA
Platform
The InfoTOKEN/OTPCenter solution was developed to provide users with the strong authentication service for transactions and logins, and it is comprised of a Server (TMS – Token Management System) and a suite of types and models of software and hardware Tokens. The TMS has functionalities destined for management of several authentication devices, parameterization, issuance of management and operating reports.
Backend is available in the platforms IBM z/OS, J2EE and Microsoft, complying with all guidelines related to the OATH - Open Authentication standard with SOA architecture, with all interfaces also available in WebServices.
The suite includes a wide range of items, from software Tokens for devices and similar resources, to smartcards, display cards, physical tokens in general, and biometrics.
As to mobile devices, the platforms supported are J2ME, Microsoft, Symbian, NokiaOS, MIDP 1.0/2.0 and Linux, as well as recognized operational systems.
InfoSERVER's strong authentication methods
In order to provide users with the best type of authentication, better suited to their working format, the new InfoSERVER business platform introduces to the market five methods: Time (OTP), Event (OTP), SMS Tan Code, Challenge/Response and Digital Certificate X-509.
InfoTOKEN Clients
With the advent of wireless technology, the concept of work has undergone a few changes. Executives today have got used to check emails, analyze management reports and submit documents wherever they are.
Since the systems designed for accessing companies' networks containing confidential information are concerned with preserving the integrity of data, the focus on information security remains as the most important aspect when it comes to ensuring increased reliability. In order to bring about the highest security level to several resources, the InfoTOKEN solution, operating with the strong authentication mechanism, is another valuable tool for assuring secure access.
InfoTOKEN has many Clients to adapt to the security needs of every corporation such as:
• Integrity of data during transactions;
• The user must provide more than one authentication method to validate access;
• Enhanced reliability of remote access.
| |
| OWA Client |
In order to ensure the integrity of data for access to emails through the web, the InfoTOKEN Client OWA (Outlook Web Access) solution requests the user to provide more than one method to validate access |
| Citrix Client |
As a strong authentication option available for remote access to applications though the web, InfoTOKEN Citrix Client provides all applications run by the user, such as documents, worksheets and emails InfoTOKEN Windows Client, designed for access to the operational system in the corporation's network, prevents third parties access to information
|
| Windows Client |
InfoTOKEN Windows Client, designed for access to the operational system in the corporation's network, prevents third parties access to information |
| VPN Client |
With respect to the VPN network (Virtual Private Network), the company must introduce the VPN Client authentication method into its access system, making all resources available with absolute security
|
|
