FIDO & mOTP Solutions

swIDch Auth Package

Ready-to-use Authentication Solution

swIDch Auth Package is the optimized user authentication next-generation solution with FIDO1.0 (UAF) & FIDO2 certification and 1^st grade GS certification. This package improves user experience and enhances the level of authentication security using One-Time, Multi-Factor, Multi-Channel, and FIDO Alliance Certified solutions. It provides easy user authentication using PIN, biometric information, mOTP, browser security PIN authentication, private certificate, and digital signature.

Features

FIDO, the international standard for convenient universal biometric authentication

swIDch Auth Package provides groundbreaking FIDO-based authentication functions that resolve the issue of vulnerability posed by ID and password methods. Utilizing authentication based on the user’s biometrics (e.g., fingerprints, faces, etc.), you can expect a secure environment of the highest standard from simple log-in functions to electronic signatures.

Biometrics

Devices capable of recognizing biometrics (e.g., fingerprints, faces, etc.) provide more convenient and quicker
authentication. User biometric information is neither sent nor saved to the server, making it more secure.

Pattern

On the mobile device screen, users can verify themselves using a registered pattern.

Without the need for a complex password, users can verify themselves by setting a 4-digit or 6-digit simple PIN number.

PC Log-in

If generated QR codes from PC log-in screens are scanned using mobile device cameras or the code is
inputted, the PC will be logged in.

Digital Signature

Using FIDO transactions, we provide encryption and digital signature PKI functions within the mobile
environment such as data integrity encryption/decryption and user and data authenticating electronic
signatures. (PKCS #7 standard digital signature)

Private Key

Implementing a private key system based on FIDO authentication technology, we create a PDF digital signature
that can be used for electronic contracts and agreements. (PKCS Detached standard digital signature)

Server/Administrator

They provide FIDO SDK related administrator functions such as user management, service maintenance, and
log management (authentication registration, success, and failures).

mOTP, strong 2FA in cyber security

swIDch Auth Package provides easy-to-use mobile OTP functions for situations that require more powerful authentication in cyber security. Unlike existing OTP, mobile OTP can generate one-time passwords without physical security devices by using a mobile application. Thus, you can build a very powerful identity verification system.

Mobile OTP

An OTP (One Time Password) that can be immediately generated from a mobile device without having to carry it around

separately (e.g., physical card types, token types, etc.).

Separate from the ID and password, it is an additional authentication (2FA/MFA) method that uses a new password each time.

PIN Linkage

We verify the PIN registered by the user before generating the OTP and use its encryption value as the linkage

information to generate the OTP to enhance security.

Transaction OTP

After generating an OTP linked to financial transaction information such as payee information, account number,

remittance amount, etc., we can respond to memory hacking or MITM (intermediate attack) in a much safer manner.

Benefits

Easy and convenient
authentication

Simple user authentication using biometrics, patterns, and PINs that do not require password input

Proven technology and
stability

Already in use for authentication purposes in governmental/public institutions, financial institutions, universities, etc.

User selectable
authentication

User can choose authentication methods that are familiar and convenient for themselves

※ Application of authentication autonomy/authentication management system

FIDO Certification

Providing an international level of security through a product design that complies with FIDO certification

Various technology
integrations

Expandable to swIDch Auth authentication infrastructure, including various authentication methods and blockchain environments

Providing SDK

Possible to develop various authentication-dedicated apps or in-apps optimized for the customer environment and requirements.

Supporting and linking with various user authentication methods

FIDO-based swIDch Auth Package supports both single authentication and multiple authentications according to the user's choice. In addition, it is possible to configure the integrated authentication system that allows users to directly select various authentications and to link systems with one authentication server.

Providing the API of mobile apps and authentication server

swIDch Auth Package provides the SDK and separate apps that reflect customer requirements so that users can easily apply authentication functions to the apps they are currently using. In addition, it supports various APIs required for the system connection by applying browser PIN authentication that does not require separate installation.

System Configuration

FIDO1.0 & FIDO2 Certification

SSenStone has been certified FIDO 1.0 and FIDO2 by the FIDO Alliance, so the security and stability of swIDch Auth biometric authentication technology have been fully verified. This means you can apply various FIDO1.0 certified biometric authentications such as fingerprint, iris, and facial recognition, as well as a passkey, a passwordless login standard certified by FIDO2.

FIDO1.0 Universal Authentication Framework(UAF)

- SSenStone FIDO Server v1.0
- SSenStone FIDO Client for iOS(Authentication Combo)
- SSenStone FIDO Client for Android
- SSenStone FIDO Authentication for Android

FIDO2

- SSenStone FIDO2 Server
- SSenStone FIDO2 Authentication

1st grade GS Certification

swIDch Auth has obtained 1st-grade software quality certification (GS certification). For detailed information about GS certification and its benefits, please visit the KTL(Korea Testing Laboratory) website.

KTL Website

Customers of SSenStone authentication solution

Insights

API vs SDK. What’s the difference? It's what you're developing...

In today’s rapidly changing business environment, many organizations are looking to develop...

Read more
Why should we pay attention to authentication SDKs?

SSenStone, an authentication technology startup in cybersecurity has launched a new product. It is...

Read more
The era of DIY kits for software development

As social distancing has become common due to the prolonged impact of COVID-19, Do-It-Yourself...

Read more

Contact Us

Improve your authentication environment and
make your service reliable with SSenStone!

Inquire now.

5F, 329, Cheonho-daero Dongdaemun-gu, Seoul, Republic of Korea

Contact below if you have an urgent inquiry.

Korea Office (SSenStone)

5F, 329, Cheonho-daero Dongdaemun-gu, Seoul, Republic of Korea (02622)

Tel : 02-569-9668 | Fax : 02-6455-9668

im@ssenstone.com

UK Office (swIDch)

swIDch Ltd Office 176, 1st Floor, 3 More London Riverside, London SE1 2RE

Tel : 020-3283-4081

info@swidch.com