PayConfirm — is a software platform that performs mobile transaction authentication signature (mTAS) to authenticate or confirm any type of operations, including transactions or e-documents, on a mobile device
PayConfirm is a mTAS solution for smartphones that allows bank’s clients to confirm their transactions in any digital channel (online banking, mobile banking, CNP operations, telephone banking (Private bank), and others) with a high level of security and convenience. Comparing to such methods of transaction confirmation as SMS, One-Time Password, scratch-cards, MAC-tokens and others, PayConfirm makes the process more secure and user-friendly.
PayConfirm consists of two parts: Server part that is implemented into bank’s IT infrastructure, Mobile client or application for smartphones based on iOS (9.0 and above) and Android (4.4 and above). mTAS PayConfirm can be easily embedded into the banking mobile application or work as a customized standalone app.
In the core of a signature, generated by PayConfirm, there are asymmetric cryptographic algorithms, which means that a bank itself doesn’t store clients’ key, while digital keys — so-called “private keys” — are generated and stored in client’s smartphone and cannot be “intercepted” as well as reproduced by any third party.
Information
Key Point
CONFIRM ANY TYPES OF OPERATIONS ON-THE-GO WITH PAYCONFIRM:
No more codes retyping from SMS, PUSH notifications and OTP generators
Trusted solution based on cryptography
No deny of service in roaming and off-line modes
Real-time notification right in a smartphone.
HIGH LEVEL OF SECURITY:
Protection from phishing, social engineering, data switching;
SMS interception and SIM swap attack protection;
Fraud monitoring systems integration significantly increases accuracy of any potentially fraudulent transactions detection.
PayConfirm Security
PAYCONFIRM FEATURES TO SECURE TRANSACTIONS:
In PayConfirm transaction authentication signature is generated on the basis of four components: exact transaction details and timestamp, smartphone fingerprint (unique smartphone characteristics) and a private key stored in client’s smartphone
No OTP or any other codes are use in mTAS PayConfirm and this reasonably decreases the risk of fraud caused social engineering.
PRIVATE KEY’S SECURITY:
The private key is generated in the user’s smartphone and stored encrypted in safe.
Two independent communication channels are used to activate PayConfirm app in a user’s smartphone.
Datasheet
PayConfirm
Case Study
2FA, 2 Factor Authentication, MFA, Multi Factor Authentication, Token, Softtoken, Biometrik, Biometric, Mobile Aplikasi, Mobile App, Otentikasi, Smartphone, Zero Trust, Digital Signature, Tanda tangan digital, Login, Transaksi, Product, Products, Produk
Konfirmasi Bayar
PayConfirm — adalah platform perangkat lunak yang melakukan tanda tangan otentikasi transaksi seluler (mTAS) untuk mengotentikasi atau mengonfirmasi semua jenis operasi, termasuk transaksi atau dokumen elektronik, pada perangkat seluler
PayConfirm adalah solusi mTAS untuk smartphone yang memungkinkan klien bank untuk mengkonfirmasi transaksi mereka di saluran digital apa pun (perbankan online, perbankan seluler, operasi CNP, perbankan telepon (Bank swasta), dan lainnya) dengan tingkat keamanan dan kenyamanan yang tinggi. Dibandingkan dengan metode konfirmasi transaksi seperti SMS, One-Time Password, kartu awal, token MAC, dan lainnya, PayConfirm membuat prosesnya lebih aman dan ramah pengguna.
PayConfirm terdiri dari dua bagian: Bagian server yang diimplementasikan ke dalam infrastruktur TI bank, Klien seluler atau aplikasi untuk smartphone berbasis iOS (9.0 ke atas) dan Android (4.4 ke atas). mTAS PayConfirm dapat dengan mudah disematkan ke dalam aplikasi seluler perbankan atau berfungsi sebagai aplikasi mandiri yang disesuaikan.
Inti dari tanda tangan, yang dihasilkan oleh PayConfirm, ada algoritma kriptografi asimetris, yang berarti bahwa bank itu sendiri tidak menyimpan kunci klien, sedangkan kunci digital — yang disebut “kunci pribadi” — dibuat dan disimpan di ponsel cerdas klien dan tidak dapat “dicegat” serta direproduksi oleh pihak ketiga mana pun.
