The mobile phone provides a convenient and ubiquitous platform for soft-tokens to provide two factor authentication, either by simply providing time-synched one time passwords, or providing even stronger protection through an encrypted second channel to confirm details and authorisation for any sensitive transactions. Second channel confirmation is the best way to prevent man-in-the-middle and phishing based attacks which basic 2FA is still vulnerable to.

GrIDsure

Masabi has partnered with GrIDsure to bring their innovative PIN and password replacement system to mobile. GrIDsure's system allows customers to log in to websites, computers, cash-points/ATMs or chip and pin terminals without worrying about having their credentials stolen. Even if you use an ATM that has been fitted with a camera and card-copying device - your login credentials are still safe. Even if someone then steals your phone, your card, and has watched everything you do.

Our GrIDsure-enabled systems use the mobile to provide 2 Factor and 2 Channel protection for VPN, ATM, computer login, door entry, banking and on-line fraud protection which requires no new hardware, just software changes.

GrIDsure can be beaten if an attacker has fully compromised both channels of a system for several transactions. The number of transactions that the attacker needs to observe increases as you increase the size of the grids used.

also in this section

Masabi builds secure applications for mobile phones.

The company is the leading developer of transactional software for today’s mass market mobile handsets, with experts in the fields of mobile usability and security across all devices.

14th November 2007
EncryptME Wins IET Security Award

Encryption software for mobile phones which makes e-commerce much more secure has won a prestigious global award for innovation at the IET's annual Innovation in Engineering Awards.