From our inception, Entersekt has sought to redefine digital banking security by looking beyond the conventional. Here are aspects of our approach that set us apart from other authentication providers.
Fully Out-Of-Band Identity Verification
For every transaction initiated on any digital channel, a second, two-way communication channel is established in real-time between a financial institution and the customer’s mobile device. The customer responds to authentication requests, not from within a browser, but using a mobile app powered by our product, Transakt.
This second-factor, out-of-band channel counters phishing, man-in-the-middle/browser, keystroke logging, call forwarding, and number porting attacks. The system does not use one-time passwords, whether hardware-generated or sent via text or voice message, and so is impervious to both mobile malware and collusion at the mobile operator.
Our electronic mobile certificate technology, emCert, provides mutual public/private key-encrypted communication from our FIPS 140-2 appliance, located behind a financial institution’s firewall, directly to the customer’s mobile phone and back again. At no point can a third party, including the mobile carrier, access or tamper with these transmissions.
Industry-standard Digital Certificates
Transakt places an X.509 certificate on every mobile device, uniquely identifying it. With full control over user enrollment, only the financial institution is party to the relationship between the emCert and the user’s identity. Nonrepudiation is supported, since each transaction is digitally signed by the end-user’s private key.
Multiple certificates from certification authorities can be hosted in the application key store. Transakt can thus be used to transparently manage certificates inside a trusted store on the device, and to sign transactions not only with the emCert, but any certificate of a financial institution’s choosing.
Universal Mobile Device Compatibility
Entersekt’s rapid application development environment means we can respond quickly to the fast-changing mobile ecosystem. Transakt is compatible with scores of models of smartphone on the iOS, BlackBerry, Android, and Windows Phone platforms, as well as virtually any feature phone capable of running Java applications.
Rapid, Streamlined Deployment
We built the Entersekt security platform for rapid deployment. Transakt Secure Gateway hardware appliances are configured via a web portal, and can be set up in a single or high-availability configuration.
Our appliances can be configured to integrate with any backend system using standard protocols, such as:
- SAML 2.0
- 3-D Secure (Verified by Visa, MasterCard SecureCode or American Express SafeKey)