.png)
.png)
Technology
OTAC
A new paradigm for user authentication and device authentication
What we face
A cyber-attack takes place somewhere around the world
once every 39 seconds. As a result, there were 8 billion pieces
of sensitive personal information being leaked to the market in 2019.
These all cost the global economy a staggering $2.9M
every minute in 2020. But WHY does this happen?
once every 39 seconds. As a result, there were 8 billion pieces
of sensitive personal information being leaked to the market in 2019.
These all cost the global economy a staggering $2.9M
every minute in 2020. But WHY does this happen?
Risk of static
information
information
Card numbers, ID, password, and PINs which we use every day are great examples of static information used as authentication credentials. Knowledge-based authentication – whether with PINs, passwords, passphrases – not only causes a major headache for users, but is also costly to maintain. As the world gets more connected, using static information for authentication carries with it a huge vulnerability allowing cyber crimes such as identity theft, card-not-present fraud, and hijacking to take place.
ID/PW
- Static information
- Easily lost and stolen
- Easily lost and stolen
Complex
authentication process
authentication process
OTP, which is widely used for secure identity authentication, cannot perform user authentication alone, so an initial authentication step (usually ID and password) is required. Since you must go through more than one authentication step, the complexity feels even greater for users.
OTP
- On its own, it is not enough to identify a user.
- It always requires initial self-authentication between a user and a server.
- It always requires initial self-authentication between a user and a server.
Network
connection distress
connection distress
In locations with poor network,
it is a big headache to force the use of a communication network for authentication. The token method is used in numerous authentication environments and has become one of the most common ways of performing secure authentication by obtaining access rights through a specific point-in-time comparison of the authentication key generated by a token service operator (TSP). This is limited due to the reliance of connectivity between a user, a server and a TSP. It is also only operates in an environment controlled by a central server.
it is a big headache to force the use of a communication network for authentication. The token method is used in numerous authentication environments and has become one of the most common ways of performing secure authentication by obtaining access rights through a specific point-in-time comparison of the authentication key generated by a token service operator (TSP). This is limited due to the reliance of connectivity between a user, a server and a TSP. It is also only operates in an environment controlled by a central server.
Token
- Requires network connection
- Bi-Directional
- Bi-Directional
User authentication is impossible With OTP only
Vulnerable to leakage/exposure by Static value
Communication required between User and server
(Pull & Push)
(Pull & Push)
No need to communicate with Server
Real-Time changes every time for Secure
authentication
authentication
Non-reusable One-Time Authentication
No duplication or overlap
Where to use
OTAC technology can generate dynamic virtual card details without a network
connection, thereby adding an extra layer of security to the payment process.
This patented technology is a CNP (card not present) security solution that replaces
static card information with dynamic details, which gives users full control
over their security and finance.
connection, thereby adding an extra layer of security to the payment process.
This patented technology is a CNP (card not present) security solution that replaces
static card information with dynamic details, which gives users full control
over their security and finance.
Current digital key solutions require network connectivity when it comes to car sharing to
receive and activate the key. There can be an issue when the vehicle is located
in a basement or rural area where network connectivity is weak.
OTAC allows drivers to access a vehicle in a networkless environment.
No matter where the driver or car is located, there are no obstacles for drivers activating the
digital key and sharing it with an authorized person.
OTAC is unidirectional authentication technology that allows devices to simply
authenticate your user/object with the dynamic code. Enable your users to locally generate
OTAC and deliver it over various channels such as voice, keypad, Bluetooth, etc.
Algorithm size under 4KB fits into any device chips for enhanced security.
authenticate your user/object with the dynamic code. Enable your users to locally generate
OTAC and deliver it over various channels such as voice, keypad, Bluetooth, etc.
Algorithm size under 4KB fits into any device chips for enhanced security.
Enterprises are moving towards microservice environments implemented with
end-to-end trust. However, authentication flows can be cumbersome and involve many
round-trips, with an irreducible time cost for each; authorisation services can become
overwhelmed as each microservice relies on them for access control.
OTAC allows secure authentication of a user in a single ended flow,
greatly reducing the number of round trips.
end-to-end trust. However, authentication flows can be cumbersome and involve many
round-trips, with an irreducible time cost for each; authorisation services can become
overwhelmed as each microservice relies on them for access control.
OTAC allows secure authentication of a user in a single ended flow,
greatly reducing the number of round trips.
Forget passwords and OTPs. Users can securely access services and networks
with OTAC code alone. OTAC guarantees hassle free log-in that works even in an
off-the-network environment. With OTAC, access your company applications
anywhere and anytime. Remote working is no longer a problem.
with OTAC code alone. OTAC guarantees hassle free log-in that works even in an
off-the-network environment. With OTAC, access your company applications
anywhere and anytime. Remote working is no longer a problem.
In the middle of a battle in a war, it is very difficult to identify your friendlies or targets.
Current solution to the problem is to identify friendlies from their devices
using static information, which can be hacked and used by the enemy.
OTAC can completely eliminate this risk by generating dynamic codes locally
without a network. Wherever a soldier is located, their device will send a dynamic
code which hackers cannot steal so that their own force can identify securely.
Current solution to the problem is to identify friendlies from their devices
using static information, which can be hacked and used by the enemy.
OTAC can completely eliminate this risk by generating dynamic codes locally
without a network. Wherever a soldier is located, their device will send a dynamic
code which hackers cannot steal so that their own force can identify securely.
Patents
55 Registered,
192 Pending
