Android Security Token
The SolidPass™ family of security tokens supports the Android mobile platform. The SolidPass™ software token for Android is engineered to generate a one-time password (OTP) that dynamically changes. Potential uses of SolidPass include securing access to enterprise applications and vpn connections. The security token can also be used to authenticate users and sign transactions. This is especially useful for online banking and mobile banking security, where it can be embedded in a mobile banking application for seamless authentication.
Android One-Time Password Generation Application
The SolidPass Android application can be used for either event-based or time-synchronized one-time password generation.
Android Two-Factor Authentication (2FA) Application
SolidPass™ also supports the following additional strong two-factor authentication methods on the Android mobile platform:
- PIN control mandatory/optional
- Security Question
- Challenge-Response
- Transaction Data Signing (TDS)
- Mutual Authentication
Android Mobile Token Convenience
The key advantage of the mobile token is that there are no new devices or wallet-fillers for customers – just an add-on to the device they already carry everywhere. Since customers already own the “hardware” (the Android enabled handset), SolidPass™ can be provided and managed at a fraction of the true cost of a hardware token solution. Thanks to its flexible framework, the application can also be updated to guard against new security threats.
Software Token Embedded
SolidPass™ is a software token built such that it can be used as a standalone product or embedded in mobile applications such as mobile banking.
The Android security token can be used to prevent the following:
- Phishing Attacks
- Pharming Attacks
- Man-In-The-Middle Attacks
- DNS Cache Poisoning Attacks
- Trojans Attacks
- Man-In-The-Phone Attacks
- Browser Poisoning Attacks
Provisioning of Mobile Token
The application can be provisioned in a number of ways include OTA (Over-the-air), Bluetooth, Wap Push, download, SMS request from a short-code or a long number or from an SMS push from a web interface or a URL from a WAP or mobile Internet portal or from a relevant applications store.
Strong Two-Factor Authentication (2FA)
The following strong authentication methods are supported in the mobile token:
- Event-Based One-Time Password (OTP)
- Time-Based One-Time Password (OTP)
- Security Question
- Challenge Response
- Transaction Data Signing (TDS)
- Mutual Authentication
Embedded Token
SolidPass™ can be embedded in any number of mobile apps such as mobile banking that would require strong two-factor authentication and security.
Environmental Footprint
Hardware tokens have a limited life span. After their obsolescence, they have to be discarded and new ones have to be issued. By contrast, Android security tokens are a virtual product using existing hardware, thus minimizing negative externalities.