Multi-Factor Authentication

The use of Multi-Factor Authentication (MFA) creates an additional layer of security on top of your username and password.

ID Control Service secures remote access, web applications, online portals, and other systems in an efficient and cost-effective manner — without the overhead expenses commonly associated with the implementation and maintenance of a Two-factor authentication solution. It overcomes all the obstacles of implementing strong user authentication for both the ASP as well as the end-users. ID Control Service is a managed authentication solution:

• Implementation and maintenance tasks are managed by ID Control itself.
• The ID Control Service-platform and system makes use of ID Control’s authentication technology.
• ID Control Service is offered as a fully outsourced authentication model to the customer, in which ID Control takes care of the entire authentication process.

Following the arrows:
1 (a) Online service user logs in with online service provider user name and password
   (b) Online service provider authenticates user name and password
2 (a) Online service user enters ID Control One-Time Password from token
   (b) Online service provider requests ID Control Password verification
3 ID Control Service System determines a valid or invalid match

When an end-user wants to access the application using a one-time password (OTP) generated by his ID Control OTP Key or sent to his mobile phone by SMS (MessageID), the authentication request will be sent to the ASP, who will forward it through the chosen protocol to the ID Control Service-platform. The platform will check and validate the OTP and send it back to the ASP who will grant access to the application.

Multi-Factor Authentication is included in both the Password Management and the Single Sign-On Management services.