Subscribe to our newsletter:

Salt mCode

Free
iPhone / iPad
Genres:
  • Business
  • Utilities
I want this app
Download from AppStore

Salt mCode Mobile Token is designed as a convenient iPhone-based “second factor” user authentication mechanism. Salt mCode provides a robust cryptographically based, PIN protected and standalone solution that does not require ongoing availability of the mobile network.

Salt mCode requires you to register your application. Please contact Salt Group for registration information.

Salt mCode features include:           
- Operation and features akin to dedicated hardware One Time Password, Challenge Response and Signature devices, except on a mobile handset
- Full OATH OTP support available
- Issuer configurable profiles including PIN length, PIN retry thresholds, weak PINs, token display timeouts, OTP and Response lengths, language support, issuer branding
- Re-deployable in the field, anywhere in the world
- Full browser independence
- Familiar user interface
 
Application areas:
- Access to Internet based banking and finance and government services
- Transaction authentication through the use of Challenge-Response or Signature  modes
- VPN and WiFi network access control
- IVR application access control
 
 
Many organisations that are seeking to improve the assurance level of user authentication for online services are electing to utilize two factor authentication mechanisms whereby a user will have an independent hardware authentication token with the following characteristics:
- PIN protected access to the token and associated authentication service
- Authentication is completed using a One Time Password (OTP) that is displayed on the Token and then submitted through an Internet or IVR system to the organisation’s online site and validated via a standards based interface to an authentication service
- The OTP is algorithmically based with robust protection of the cryptographic keys within the Token
- The OTP verification service is robust and network connectable and provides for cross-authentication of the service with requesting application or network systems