Confidentiality, integrity and authenticity in mobile online banking
KOBIL enables digital identity for secure transactions via app
KOBIL Systems GmbH offers with “mID Security Suite” a directive-compliant security solution to ensure the protection of banks, insurance providers, health insurance companies and their customers in mobile applications such as online banking. With this announcement the Worms based clients are improving security gaps in digital internet banking transactions and ensures a safe and secure app with safe log-in, confidentiality and integrity. The security of the digital identity is validated upon the authentication of the user, the device identification and the authenticity check of the mobile application, whether smartphone or tablet.
The customer doesn't need any additional hardware when using the app for transactions. The mID security suite is seamlessly integrated into the installed hardware and software environment and works independently using the operating system. Accomplished is this through the communication channel (see chart) which realises the end-to-end encrypted authentication between smartphone (SDK), the SSMS (Smart Security Management Server) to the backend of the customer. The Software Development Kit (SDK) can be embedded on any mobile device as well as in any mobile app. Manipulation and development of fake apps are not possible.
With the main activation, the app is related to the personal mobile device and registers itself through the communication channel on the SSMS. This server is the backend part of the security solution and it is typically located in the customer’s data centre. For instance, it controls whether the app is actually running on the originally registered device, whether it has been copied or whether the app’s code has been modified.
This guarantees a secure connection and that the encrypted data coming from the app is also authentic. Only when all test routines happen to be successfully completed the SSMS releases the access utilising the client app channel on the virtual smartcard within the registered app. From this moment on, the communication between customer and provider is encrypted, binding and secure.
KOBIL offers this security application to finance, insurance and health insurance companies. Ismet Koyun, CEO of KOBIL emphasises: “Any bank which doesn't secure his transaction service app on customer’s smartphones will lose the consumers trust. Only in this manner can the financial industry proactively tackle the challenges of the future and remain competitive.” His solution also matches all government regulations regarding data protection also it security.
The app strategy: The mID Security Suite protects the consumer side (smartphone), employs the communication channel and also the SSMS whether the mobile app is registered on the original PC, tablet or smartphone and rules the affirmative code. Only after this authentication and the correct user PIN the bond between smartphone and bank is made throughout the customer app channel.