Find news and information for the executive corporate security director, CSO, facility manager and assets protection manager on issues of policy, products, incidents, risk management, threat assessments and preparedness.
Issue link: http://sdi.epubxp.com/i/941796
February 2018 www.SecurityInfoWatch.com / Security Dealer & Integrator 47 enhances the security of the card; biometrics now enhances the security of the PIN and creates a much more convenient, quick and efficient experience for the bank customer vs. typing in passwords. Other mix-and-match authentica- tion options include card and bio- metric, phone and biometric, and "deviceless" solutions that combine an account number and biometric. Biometrics also can be used for bank employee authentication to enhance productivity and security. Applications include logical access for networks, shared workstations, call centers and remote applications. Additionally, biometrics can be used for transaction verification in applica- tions including working with customer records and processing approvals. Finally, biometrics authentication is ideal for controlling physical access to ATMs, branches and safe boxes. Trust can be further reinforced through collaboration between banks and the government on identity proof- ing models in which citizens receive a digital certificate that enables them to sign, timestamp and seal a docu- ment to authenticate and/or identify themselves. is is now occurring in European countries with the advent of the European Commission's eIDAS Regulation, which enables the use of electronic identifications means and trust services (i.e., electronic signa- tures, electronic seals, time stamping, registered electronic delivery and web- site authentication) by citizens, busi- nesses and public administrations for accessing online services or manag- ing electronic transactions across the European member states. Mobile: Another Key Component Increasingly, the customer must be in the middle of everything the bank is doing. is is the strength of the fintechs, and this is how banks will acquire and retain end-users. One example of new customer- centric innovation is next-generation multi-factor authentication solutions on mobile devices. e latest solutions turn smartphones into handheld vali- dation devices or "authenticators" for verifying online access and transac- tion requests, such as digital banking transactions or corporate VPN access. A mobile app is combined with pub- lic key-based cryptography and push technology to create a new experience for bank customers. ese solutions provide added security that is far more intuitive and user-friendly compared to traditional methods of authentication. Ultimately, these authentication solutions can be more broadly used to help increase cybersecurity for healthcare providers, digital businesses and other enter- prises, while improving customer and employee satisfaction. Authentication solutions like these must support all necessary APIs, including OAUTH, OpenID Connect, SCIM and SAML in order for banks to easily adopt this new opportunity and to embrace the Open API trend. ey should embed mobile appli- cation security tools like jailbreak detection, anti-cloning, Runtime Application Self Protection, etc., since providing an authentication tool on a device that is not protected would be of no-use. ey should also be sup- ported by turnkey applications that are easily customizable so that the bank can present its brand without having to build and maintain a custom app. Additionally, a Soware Develop- ment Kit (SDK) should be available to help integrate the capabilities into existing bank apps. e entire solution should provide flexible policy customi- zation, robust security and data analyt- ics, and create an audit trail for finan- cial institutions that enables them to comply with regulations such as PSD2, GDPR and others. is type of mobile platform for trusted transactions, combined with new regulations now coming into play, creates an opportunity for banks to become the central point of identification and authentication for a digitally connected world that, until now, has suffered from the complexity of so many different online identities and passwords. Every end-user could potentially have his or her online trusted iden- tity generated and held by banks, and would be able to identify and authen- ticate for many types of transactions – from government and utility services to commercial offerings. ese solutions give bank custom- ers the confidence that they have more control over who is accessing their confidential and proprietary informa- tion, and that they are protected even when they behave unsafely. ■ » Olivier Thirion de Briel is HID Global's Global Solution Marketing Director for Financial Institutions and IAM Solutions. Request more info about the company at www.securityinfowatch.com/10213866.