The European Banking Authority was established by Regulation (EC) No. 1093/2010 of the European Parliament and of the Council of 24 November 2010.
The EBA has officially come into being as of 1 January 2011 and has taken over all existing and ongoing tasks and responsibilities from the Committee of European Banking Supervisors (CEBS).
SolidPass is compliant with EBA guidelines and regulations.
SolidPass Security Tokens and Authentication
The SolidPass family of security tokens help authenticate and sign transactions. The implementation of authentication is a strong step towards establishing digital identity management.
One-Time Password (OTP) Generation
To create a one-time password (OTP), a user will enter their PIN into the SolidPass Application and generate an OTP to validate the requested transaction. Longer OTPs make a system more secure. The suggested minimum OTP length in the SolidPass System is 8 digits or 6 alphanumeric characters. PIN control for OTP generation is optional.
Two-Factor Authentication (2FA)
SolidPass supports the following strong two-factor authentication (2FA) methods on mobile and PC platforms:
- Time-based One-Time Password (OTP)
- Event-based One-Time Password (OTP)
- PIN control mandatory/optional
- Security Question
- Mutual Authentication (2 Way Authentication)
Mobile Token Convenience
The key advantage of the mobile token is that there are no new
devices or "wallet-fillers" for customers – just an
add-on to a device that users already carry everywhere. Since
customers already own the “hardware” (the mobile phone),
SolidPass can be provided and managed at a fraction of the
cost of a hardware token solution. Thanks to its flexible
framework, the application can also be updated to guard
against new security threats.
SolidPass works on a number of different mobile platforms (both feature and smartphones). Solidpass mobile tokens include the following:
- Android Security Token
- Blackberry Security Token
- Brew Security Token
- iPhone SecurityToken
- Java ME Security Token (J2ME)
- Mobile Linux Security Token
- Palm Security Token
- Symbian Security Token
- Windows Mobile Security Token
The mobile phone vendors supported include:
- Blackberry (RIM)
- HP Mobile
Provisioning of Mobile Token
The application can be provisioned in a number of ways include OTA (Over-the-air), Bluetooth, Wap Push, SMS request from a short-code or a long number or from an SMS push from a web interface or a URL from a WAP or mobile Internet portal or from a relevant applications store.
Desktop Soft Token
SolidPass also supports desktop-based software tokens as
well The Desktop Operating Systems and Browsers
- Toolbar Token
- Java Token
- Linux Token
- Mac Token
- Windows Token
Software Token Embedded
SolidPass is a software authentication token built such that it can be used as a standalone product or embedded in mobile applications such as mobile banking. Thus strong authentication can be built into standalone mobile apps or PC applications.
SolidPass security tokens can be used to prevent the following:
- Phishing Attacks
- Pharming Attacks
- Man-In-The-Middle Attacks
- DNS Cache Poisoning Attacks
- Trojans Attacks
- Man-In-The-Phone Attacks
- Browser Poisoning Attacks
OATH Compliant Security Tokens
As a member of the Initiative for Open Authentication,
SolidPass tokens are built OATH compliant. SolidPass uses the
standards-based HOTP algorithm endorsed by OATH, providing
compatibility with third-party software.
Easy integration of SolidPass into existing IT back-ends and support of various architectures:
- RADIUS Server Support
- LDAP support
- Microsoft IAG 2007 SSL VPN
- BlackBerry Enterprise Server (BES) support
- Citrix Secure Access Gateway
- Cisco VPN
- SOA architecture
Server OS independent
The authentication server is OS independent and supports Linux (tested on most distributions like Redhat, Ubuntu and Novell Suse), Microsoft Windows Server (NT, 2003, XP), Sun Solaris and all operating systems that support enterprise Java.
Custom Branded Security Tokens for Enterprises
Custom branding is an available option for SolidPass security
tokens. This is especially useful for large institutions.
Industries and verticals that the SolidPass security tokens are appropriate for:
- Public Sector
- Homeland Security
- Professional Services
- Corporate Security
- Cloud Computing Security
Solutions that SolidPass is appropriate for include:
- Online Banking Security
- Mobile Banking Security
- E-Commerce Security
- VPN Access Security
- Network Access Security
- Identity Management
- Embedded Token
- Mobile Authentication
- Software-as-a-Service (SaaS)