ASEBA SxS: strong authentication and authorization solution

The ASEBA Authentication Server (SxS) is a two-factor authentication server specifically designed to meet the business and regulatory requirements of multi-channel organizations (financial institutions, managed service providers, and other organizations).

ASEBA SxS: strong authentication and authorization solution that combines advanced security features with user acceptance, reduces cost and eliminates possible fraud in the best possible way

Learn more about the new release of ASEBA SxS + try the new ASEBA Mobile Token demo

The ASEBA Authentication Server (SxS) is a two-factor authentication server specifically designed to meet the business and regulatory requirements of multi-channel organizations (financial institutions, managed service providers, and other organizations). ASEBA SxS enables simultaneous use of different types of end-user devices and OTP standards, simplifies user experience, increases security, and reduces cost by enabling organizations to apply consistent strong authentication and authorization over multiple service channels, including web and phone.

Highlights:

• Wide range of authentication methods and standards, with the possibility of easy adaptation of new authentication methods:
• Prevention of client side attacks: the use of two factor user & transaction authentication prevents Trojan horse attacks, Phishing, Man-in-the-middle attacks, Inside attacks (Man-in-the-browser)
• Fully centralized lifecycle management: user credentials management (ID, PIN), physical device management (token, card reader), mobile application management from a single place
• Multiple service channels: Web, IVR, Mobile and ATM using a single authentication platform
• Easy to integrate & maintain: service oriented architecture integration with 3rd party applications and modular system administration.

The new release of the ASEBA SxS authentication server

The new version of the ASEBA SxS authentication server provides the following:

• Support for OATH (HOTP, TOTP, OCRA) and CAP/DPA/PLA standards in a single application
• Support for a broader range of platforms
• Support for a broad range of authentication devices:
  • Hardware tokens (Vasco, Gemalto, ActivIdentity, RSA)
  • EMV CAP/DPA cards & readers
  • ASEBA JiMBa mobile banking and Mobile token
  • Display cards (OATH & CAP/DPA based)
  • SMS

• Additional product features and enhancements:
  • Access Policies
  • Multi-tenancy
  • History validation
  • Archive transaction data integrity evaluation
  • Configuration reload
  • Configurable ciphering (including HSM)
  • Detailed auditing
  • Advanced security audit
  • Multiple authentication methods for administration services
  • Cross-Site Scripting prevention
  • Enhanced Synchronization
  • Static password
  • SMS OTP extensions

Try the new ASEBA Mobile Token demo

The new Mobile Token demo is available in the market stores. If you are interested in experiencing various and advanced authentication methods (OTP, C/R, MAC, MDS, QR code and Push notification) please contact us on hr.marketing@asseco-see.com and we will gladly provide you with the instructions.

About push notification

The push notification feature of the ASEBA Mobile Token application provides a smooth and an enjoyable experience for the end-user when performing authentication and transaction confirmation actions in online banking services. In the transaction signing process, a push notification is sent to the user device (a mobile phone or a tablet) where the user only needs to verify transaction details and confirm the transaction with a single tap on the ASEBA Mobile Token app. Upon successful transaction confirmation by the server side the user is automatically notified of the result in the online banking application.