The Mobile World - VASCO€¦ · © 2012 - VASCO Data Security 3 VASCO Perspective & Philosophy...
Transcript of The Mobile World - VASCO€¦ · © 2012 - VASCO Data Security 3 VASCO Perspective & Philosophy...
© 2012 - VASCO Data Security
The Mobile WorldHow to utilize Vasco’s software solution to
provide more convenient security
© 2012 - VASCO Data Security
DIGIPASS sold & shipped
2
DIGIPASS 250 -251
DIGIPASS 260 -261
DIGIPASS 270
DIGIPASS 300
DIGIPASS 301 CV
DIGIPASS 550
DIGIPASS 560
DIGIPASS 580
DIGIPASS 585
DIGIPASS 700
DIGIPASS 800
DIGIPASS 810
DIGIPASS 815
DIGIPASS 820
DIGIPASS 830
DIGIPASS 835
DIGIPASS 836
DIGIPASS 840 CV
DIGIPASS 855
DIGIPASS 865
DIGIPASS 905
DIGIPASS 920
DIGIPASS CertiID
DIGIPASS Key 101
DIGIPASS Key 200
DIGIPASS Key 860
DIGIPASS GO 8
DIGIPASS GO 100
DIGIPASS GO 3
DIGIPASS GO 6
DIGIPASS GO 7
© 2012 - VASCO Data Security 3
VASCO Perspective & Philosophy
Security
CostEase
© 2012 - VASCO Data Security 4
Evolution of Authentication DevicesSe
curit
y Le
vel
Virtual keyboards
Time-based OTPPhishing
Pharming
Counter-based OTP
Meaningful user prompts
WYSIWYS
MitM with Social Engineering
Sophistication Level of Attacks
Electronic signature
MitM
Keyloggers
Static Passwords
© 2012 - VASCO Data Security 5
Client Strategy
Consumer Channels
Embedded Chipsets
Mobile Platforms
DIGIPASS Family
© 2012 - VASCO Data Security
SMS Carrier
MDC Server
SMS/EMAIL Gateway
VASCO Authentication Server
MDCClient
SEAL* / SOAP
RADIUS
RPC Request to send OTP
Success/Failure
Success
Failure
Deliver generated OTP
3
HTTP(S) request4
5
RADIUS Client(SSL VPN)
Web Apps.
Any network
2
*SEAL: VASCO proprietary protocol
VASCO deliverables
1
Virtual Digipass: functional architecture
© 2012 - VASCO Data Security
1876 20101992
Evolution in Telephony
7Definition by SWIFT
Mobile is ubiquitous and PopularCan be used to access and Authenticate with offline Capabilities.
Handheld Computing
2010
© 2012 - VASCO Data Security
We need a
8
Secure TransactionSecure Platform
© 2012 - VASCO Data Security
Secure Transaction
9
© 2012 - VASCO Data Security
Secure Platform
10
© 2012 - VASCO Data Security
Platform Security Balancing Act
Platform Success
11
© 2012 - VASCO Data Security
Quick Mobile Login
12
Increased User Friendliness ……. with Strong Authentication
OTPKevin D
© 2012 - VASCO Data Security
Strong Auth for Alternate Channels
13
8675309
Kevin D OTP
© 2012 - VASCO Data Security
Out-of-Band Transaction Data Signing
14
Toronto Office Supply
86753091728642975310450
Submit
© 2012 - VASCO Data Security
QR Codes
15
Toronto Office Supply
86753091728642975310450
Submit
© 2012 - VASCO Data Security
Secure Platform
16
© 2012 - VASCO Data Security
Platform Scoring
17
Jail broken?Infected?
Location? Behavior?
© 2012 - VASCO Data Security
Application Security
18
Device Binding
Application Signing & Obfuscation
External Audit
True Random Key generation
Slow Encryption Function
Secure Key provisioning
© 2012 - VASCO Data Security 19
Digipass for Mobile
Digipass for Mobile Enterprise Edition
© 2012 - VASCO Data Security
Secure Component
20
© 2012 - VASCO Data Security 21
DIGIPASS Nano
Hardware Security based application
Integration in SIM Toolkit Environment
Secure access to Keyboard & display (No trojan)
Hardened Key storage
Works on virtually all devices (GSM + SIM)
Extremely simple to use & deploy
© 2012 - VASCO Data SecurityDigipass Product Family Details 22
DPNano how to install on the Mobile ?
© 2012 - VASCO Data Security 23
© 2012 - VASCO Data Security
Vasco DigipassVasco Digipass –– one single strong password for all channels:one single strong password for all channels:
Online tradingOnline trading
ATMATM
Phone CentrePhone Centre
Mobile BankingMobile Banking
Internet BankingInternet Banking
Presence: Turkey, Malta, Cyprus, LuxemburgPresence: Turkey, Malta, Cyprus, Luxemburg
2004: SMS / 2007: WAP / 2010: application2004: SMS / 2007: WAP / 2010: application
Challenges:
• Reduce customer service costs while maintaining high levels of customers satisfaction
• Create a seamless customer experience from online to the mobile environment
• Ability to offer the banking service to as many customers as possible via their particular mobile device
VASCO Case Study 1/2
24
© 2012 - VASCO Data Security
MDP Login
25
© 2012 - VASCO Data Security
Copyright© 2011 VASCO Data Security. All rights reserved.No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording, or otherwise, without the prior written permission of VASCO Data Security.
TrademarksVASCO®, VACMAN®, IDENTIKEY®, aXsGUARD®, DIGIPASS® and the ®logo are registered or unregistered trademarks of VASCO Data Security, Inc. and/or VASCO Data Security International GmbH in the U.S. and other countries
Disclaimer of Warranties and Limitations of LiabilitiesThis Report is provided on an 'as is' basis, without any other warranties, or conditions.
Copyright & Trademarks
26