Two Factor Authentication

The need to improve logon security beyond passwords is not new, and neither is two Factor Authentication – our “problem with passwords” whitepaper explains this in detail. Two Factor Authentication is usually defined by “something you know” and “something you have”. Unfortunately most vendors in the market today simply add a “something you have” as a band-aid on top of a PIN/password, and sell it as a 2FA solution, when in fact they are only adding a single factor to what you already have.

At Authlogics we do things differently, our aim was to get rid of the password entirely. We also wanted to make the login process less cumbersome for end users, all while providing a very high level of security. The result of this ambition is our patented PINgrid and PINphrase technologies. We also developed PINpass which adheres to the same industry standards (OATH) as most other vendors, providing a solution where standards compliance is a priority.

Features

  • No hardware tokens
  • No more passwords
  • Authlogics Authenticator soft token available in all mobile app stores
  • Soft Token works 100% Offline
  • Seamless step-up from 1.5 Factor when needed
  • Connect with networking equipment via RADIUS
  • Real-Time or Pre-Send token delivery via SMS or e-mail
  • Patented, award-winning technology
  • Rapid deployment
  • Simple to use
  • Risk appropriate security for high value assets

Our Two Factor Authentication Technologies

iPhone 7 PINgrid 2 Factor Authentication
iPhone 7 PINphrase 2 Factor Authentication
iPhone 7 PINpass 2 Factor Authentication
  • Pattern based graphical technology.
  • The user simply looks at the grid, recalls their pattern and enters the One Time Code.
  • Token delivered via App, SMS/TEXT or Email.
  • Language based text technology.
  • The user simply reads the question, recalls their answer and enters their One Time Code.
  • Token delivered SMS/TEXT or Email.
  • Standards based (OATH) numeric technology.
  • The user simply enters the One Time Code from the token, along with a PIN/password.
  • Token delivered via App, SMS/TEXT or Email.

Frequently Asked Questions

Why is PINgrid more secure than OATH solutions?

OATH solutions rely on on PIN or password to be entered along with a random code. The PIN or password can easily be stolen by key loggers or malware and be reused at any time as it never changes. It is also very easy to slit the “something you know” and “something you have” up making it easier to attack each factor in isolation.

With PINgrid, the “something you know” is a pattern which is not disclosed during the logon process. Furthermore, a captured One Time Code can not be reverse engineered to separate the “something you know” and “something you have” keeping both safe.

How is PINpass different from other OATH solutions?

PINpass, like many other solutions, fully complies with the OATH standard, i.e. HOTP & TOTP (RFC 4226, 6238). It also adds extra benefits such as the ability to use the Active Directory password instead of a separate PIN code, qllow a PIN code to be placed before, after or in the middle of the random code, and adds 3 Factor Authentication via the soft token to provide transaction signing capabilities.

How is does PINphrase work in 2FA mode?

PINphrase is based on a question and answer system whereby only random letters of the answer are provided. This keep the answer a secret and ensures that also ensures that a different code is used each time.

When using PINphrase in 2FA mode a question is sent to the user via SMS/TEXT or email, this becomes the “something you have”. The user types in the requested letters from their answer, the “something you know”, which is the One Time Code. If the message falls into the wrong hands it is of no use unless the bad guy also knows the answer to the question – unlike OATH based systems.