protect4use

Multi-factor Authentication

for web services with high security and privacy requirements

Enables a particularly secure login as well as the revision-proof authorization of transactions and the electronic submission of digitally signed data or documents.

News

Press information 14th July 2020: Online Access Act: secunet and ELSTER ensure easy e-government login via smartphone
8th July 2020: Release 2.5 - Server und Clients

Use cases

A complete authentication solution or addition to an existing system with increased security and two-factor authentication
All network-based services on the Internet/Intranet with high demands on access protection due to personal data or data which is relevant for payment transactions according to eIDAS, PSD2, etc.
Web portals, apps or authentication components for these services

Advantages

No costly and unpredictable in-house developments; maintained by secunet
Custom look & feel: Configurable branding and UI contents
Very short integration and rollout phases, trouble-free parallel operation with legacy systems during the migration phase
Flexible coverage of a wide range of security requirements
Futureproof: Additional token types; new cryptographic procedures or standards can be integrated at any time

Protection of digital identity through secure authentication

Web service functions are mostly based on electronic identities. The operators must sufficiently protect the access as well as the stored data of the users. Both the security on the Internet in general and the legal framework are taken into account. For this, it is essential to provide secure authentication, which is a partial aspect of identity management alongside identification.

Different services require different levels of security. Users want the highest possible convenience. When registering for the first time, they are willing to invest a little more effort in identification as long as the normal login remains uncomplicated. However, if users perceive any risks to privacy or assets, they also tolerate additional effort in the interest of security. This requires tiered authentication processes that require users to interact only in a manner appropriate to their security needs.

The traditional authentication method using a username and password is no longer sufficient due to its vulnerability to attacks and new legal requirements. OTP and cloud-based processes, central identity providers and FIDO also have specific disadvantages. Protect4use adopts a new approach: All user data remain entirely with the operator or its service provider. All relevant platforms for desktop and mobile devices including the respective accessibility options and all relevant browsers are supported. This means that almost all possible user groups can be addressed. The authentication process is secured with strong cryptography and a very wide range of security requirements can be covered flexibly. Protect4use is developed entirely in Germany by secunet, a security partner of the Federal Republic of Germany. In addition to integration support, secunet is happy to offer consulting, security assessments and auditing services on request.