multi-OTP
OAKBROOK TERRACE, Illinois and ZURICH, Switzerland – September 27, 2010 – VASCO Data Security International, Inc. (Nasdaq: VDSI; www.vasco.com), a leading software security company specializing in strong authentication products, announces the availability of its multi-OTP technology. With its multi-OTP devices, VASCO is responding to existing customers of traditional authentication solutions who have a need to secure additional applications without yet introducing online transaction signing.
DIGIPASS one-button devices providing single one-time passwords (OTP) are ideally suited for user-friendly user authentication. Multi-OTP one-button devices can secure multiple applications with a single authentication device using different OTPs. With every push on the authenticator’s button, the security level of the calculated OTP is enhanced.
For a graphic depiction of the multi-OTP functionalities, please visit http://www.vasco.com/products/digipass/digipass_go_range/multi_otp_authentication_devices.aspx
VASCO positions the multi-OTP devices for the secure use of different applications in banks:
Online banking (customer logon and payment validation)
Stock trading
Cash retrieval at the ATM
Manage insurance policies
The single one-button authentication device can generate multiple one-time passwords (OTP). Multi-OTP devices also provide a solution for banks with divisions responsible for certain applications operating in independent legal entities. From a customer interaction perspective, they often want to supply the end-user with only one authentication device, but for internal purposes they require separate security implementations.
Multi-OTP technology also provides a solution for ASPs who have several applications they want to secure with a single DIGIPASS but using different OTPs for different applications.
The entire DIGIPASS GO-family, VASCO’s range of one-button authentication devices, can be equipped with multi-OTP technology upon customer request. One DIGIPASS will be able to generate up to three different OTPs. The different OTPs will have distinct features such as the length of the OTP and a customized message displayed before the OTP generation, avoiding that the user would present a wrong OTP.
The multi-OTP device operates as follows:
When pressing the one-button device once, the user will obtain an OTP which most likely will be used to log-on to the online application.
When pushing the button twice, a customized message will be displayed followed by an OTP. This OTP has a different length than the OTP used for log-on and could be used as a payment OTP to known or trusted accounts.
When pushing the button three times, another customized message and OTP will be generated. This third OTP could be an OTP for high risk transactions, for instance to validate high value payments or payments to unknown accounts.
On the fourth push of the button, the DIGIPASS will be switched off.
Multi-OTP technology allows banks to decide real-time which OTP should be used for which application. For instance, when executing a high-risk transaction the end-user will be prompted to provide a different OTP than the one he uses for log-in. Hence the multi-OTP devices provide enhanced security compared to traditional one-button devices. A different OTP is used for log-in and payment validation; a specific OTP is used for transactions to known accounts, thus minimizing fraudulent transactions; and minimizing the risk for man-in-the-middle attacks to happen considering the end-user will have to be convinced to provide a high risk OTP.
"With the launch of our multi-OTP patent pending DIGIPASS devices, VASCO showcases its commitment to innovation. We continuously keep track of security trends and fraud attacks and we develop our products and technology to stay ahead of these evolvements. With our multi-OTP devices we clearly meet a market demand to secure more channels with a single device. Furthermore our multi-OTP devices are DIGIPASS Plus Ready, allowing customers to benefit from our DIGIPASS as a Service, cloud-based authentication offering," says Jan Valcke, President and COO at VASCO Data Security.
VASCO is a leading supplier of strong authentication and e-signature solutions and services specializing in Internet security applications and transactions. VASCO has positioned itself as global software company for Internet security serving a customer base of approximately 10,000 companies in more than 100 countries, including approximately 1,500 international financial institutions. VASCO’s prime markets are the financial sector, enterprise security, e-commerce and e-government.
Forward Looking Statements:
Statements made in this news release that relate to future plans, events or performances are forward-looking statements. Any statement containing words such as “believe,” “anticipate,” “plan,” “expect,” “intend,” “mean,” “potential” and similar words, is forward-looking, and these statements involve risks and uncertainties and are based on current expectations. Consequently, actual results could differ materially from the expectations expressed in these forward-looking statements.
Reference is made to VASCO's public filings with the U.S. Securities and Exchange Commission for further information regarding VASCO and its operations.
This document may contain trademarks of VASCO Data Security International, Inc. and its subsidiaries, including VASCO, the VASCO “V” design, DIGIPASS, VACMAN, aXsGUARD and IDENTIKEY.
For more information contact:
Jochem Binst, +32 2 609 97 00, [email protected]