SlideShare une entreprise Scribd logo

CrontoSign

cronto
cronto
TechnologieÉconomie & finance
1  sur  9
Securing Financial Transactions Online Cronto Limited, +44 1223 750001, www.cronto.com
Trojan Malware: Man-in-the-Browser No Transaction Signing = Stop-Gap • Extra passwords, secret questions, OTP tokens etc. DO NOT WORK! • Need to authenticate the TRANSACTION not just the user "These attacks have been successfully and repeatedly executed against many banks and their customers across the globe in 2009" Avivah Litan, vice president and analyst at Gartner. © 2012 Cronto Limited 2
Choosing Transaction Signing Criteria Requirement Client Option Hardware Device & Mobile Application Data Capacity 60-100 free text characters User Experience The concept is familiar to the user Speed < 1s decoding performance Robustness Works on all mobile/computer screens and in various lighting conditions Personalisation Ability to Re-Personalise device/app Security Encrypted data, transaction signature Maturity Proven performance, ready for rollouts © 2012 Cronto Limited 3
CrontoSign • Designed for online banking - full transaction signature - dynamic: no hardcoded use cases - effective personalisation • Based on simple familiar to user concept – take a picture • Uses colour to increase data capacity, speed and robustness • Available as mobile software and standalone hardware © 2012 Cronto Limited 4
Cronto Visual Transaction Signing Cronto Visual Transaction Signing Click k 1. Bank generates the Cronto visual cryptogram erates the Cronto visual cryptogram a photo of the computer and Customer takes omer takes a photo of screen using the CrontoSign client. the computer sing the Cronto client application. © 2012 Cronto Limited 5
Cronto Visual Transaction Signing Cronto Visual Transaction Signing Check k ck 2. Customer checks payment details on the r checks payment visual cryptogram to the web page and enters erates the Cronto details on the phone comparing omer takes a photo of the authorisation code if details are correct the computer mparing to the web page and enters orisationCronto client application. sing the code if details are correct © 2012 Cronto Limited 6
Encrypted Free Text Transaction Encoding Bank chooses what data to encode and when © 2012 Cronto Limited 7
Dynamic Personalisation • CronSign Device/App is distributed unpersonalised • Secure credentials provisioned via a CrontoSign image • Update credentials without replacing the device NO Seed Data stored by Cronto © 2012 Cronto Limited 8
Try CrontoSign • Download CrontoSign demo app, available from: - Apple App Store - Android Market • www.crontosign.com/get • Use it at: - www.crontosign.com contact@cronto.com +44 1223 750001 www.cronto.com © 2012 Cronto Limited 9

Recommandé

Proj 686 -_dep_gilberto_ribeiro
Proj 686 -_dep_gilberto_ribeiroProj 686 -_dep_gilberto_ribeiro
Proj 686 -_dep_gilberto_ribeiroGerson Peña
 
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...Tribunal de Contas da União - TCU (Oficial)
 
CGD | Investor journal n01_2016
CGD | Investor journal n01_2016CGD | Investor journal n01_2016
CGD | Investor journal n01_2016Caixa Geral Depósitos
 
MFG Extended Presentation 11 26 15
MFG Extended Presentation 11 26 15MFG Extended Presentation 11 26 15
MFG Extended Presentation 11 26 15Mohamed Gamal
 
6 Ways Your Brain Transforms Sound into Emotion
6 Ways Your Brain Transforms Sound into Emotion6 Ways Your Brain Transforms Sound into Emotion
6 Ways Your Brain Transforms Sound into EmotionIsland Better Hearing
 
BBC 2.0 Years On
BBC 2.0 Years OnBBC 2.0 Years On
BBC 2.0 Years OnEduserv Foundation
 
Carlos eduardo carvalho projeto 192 14 12 2009
Carlos eduardo carvalho projeto 192 14 12 2009Carlos eduardo carvalho projeto 192 14 12 2009
Carlos eduardo carvalho projeto 192 14 12 2009Pablo Mereles
 
Membership Communities: Facebook Groups vs Forums
Membership Communities: Facebook Groups vs ForumsMembership Communities: Facebook Groups vs Forums
Membership Communities: Facebook Groups vs ForumsThe Membership Guys
 

Recommandé

Proj 686 -_dep_gilberto_ribeiro
Proj 686 -_dep_gilberto_ribeiroProj 686 -_dep_gilberto_ribeiro
Proj 686 -_dep_gilberto_ribeiroGerson Peña
 
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...Tribunal de Contas da União - TCU (Oficial)
 
CGD | Investor journal n01_2016
CGD | Investor journal n01_2016CGD | Investor journal n01_2016
CGD | Investor journal n01_2016Caixa Geral Depósitos
 
MFG Extended Presentation 11 26 15
MFG Extended Presentation 11 26 15MFG Extended Presentation 11 26 15
MFG Extended Presentation 11 26 15Mohamed Gamal
 
6 Ways Your Brain Transforms Sound into Emotion
6 Ways Your Brain Transforms Sound into Emotion6 Ways Your Brain Transforms Sound into Emotion
6 Ways Your Brain Transforms Sound into EmotionIsland Better Hearing
 
BBC 2.0 Years On
BBC 2.0 Years OnBBC 2.0 Years On
BBC 2.0 Years OnEduserv Foundation
 
Carlos eduardo carvalho projeto 192 14 12 2009
Carlos eduardo carvalho projeto 192 14 12 2009Carlos eduardo carvalho projeto 192 14 12 2009
Carlos eduardo carvalho projeto 192 14 12 2009Pablo Mereles
 
Membership Communities: Facebook Groups vs Forums
Membership Communities: Facebook Groups vs ForumsMembership Communities: Facebook Groups vs Forums
Membership Communities: Facebook Groups vs ForumsThe Membership Guys
 
6. Improving ST2 KPI
6. Improving ST2 KPI6. Improving ST2 KPI
6. Improving ST2 KPIPHEScreening
 
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...PHEScreening
 
Sudden cardiac death
Sudden cardiac deathSudden cardiac death
Sudden cardiac deathPHEScreening
 
Зачем лин-менеджеру управлять знаниями?
Зачем лин-менеджеру управлять знаниями?Зачем лин-менеджеру управлять знаниями?
Зачем лин-менеджеру управлять знаниями?Всеукраинский Форум "Развитие производственных систем"
 
Content Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irContent Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irParham Abyazi
 
Nicol Ripon NOCN presentation
Nicol Ripon NOCN presentationNicol Ripon NOCN presentation
Nicol Ripon NOCN presentationMike Harris
 
EN_T-Time 1 2015
EN_T-Time 1 2015EN_T-Time 1 2015
EN_T-Time 1 2015Gary M. Gladysz, PhD
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 3652toLead Limited
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxLoriGlavin3
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embeddingZilliz
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESmohitsingh558521
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxLoriGlavin3
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rick Flair
 

Contenu connexe

En vedette

6. Improving ST2 KPI
6. Improving ST2 KPI6. Improving ST2 KPI
6. Improving ST2 KPIPHEScreening
 
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...PHEScreening
 
Sudden cardiac death
Sudden cardiac deathSudden cardiac death
Sudden cardiac deathPHEScreening
 
Content Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irContent Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irParham Abyazi
 
Nicol Ripon NOCN presentation
Nicol Ripon NOCN presentationNicol Ripon NOCN presentation
Nicol Ripon NOCN presentationMike Harris
 

En vedette (7)

6. Improving ST2 KPI
6. Improving ST2 KPI6. Improving ST2 KPI
6. Improving ST2 KPI
 
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
 
Sudden cardiac death
Sudden cardiac deathSudden cardiac death
Sudden cardiac death
 
Зачем лин-менеджеру управлять знаниями?
Зачем лин-менеджеру управлять знаниями?Зачем лин-менеджеру управлять знаниями?
Зачем лин-менеджеру управлять знаниями?
 
Content Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irContent Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.ir
 
Nicol Ripon NOCN presentation
Nicol Ripon NOCN presentationNicol Ripon NOCN presentation
Nicol Ripon NOCN presentation
 
EN_T-Time 1 2015
EN_T-Time 1 2015EN_T-Time 1 2015
EN_T-Time 1 2015
 

Dernier

Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 3652toLead Limited
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxLoriGlavin3
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embeddingZilliz
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESmohitsingh558521
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxLoriGlavin3
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rick Flair
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionDilum Bandara
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxLoriGlavin3
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 

Dernier (20)

Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
 
Training state-of-the-art general text embedding
Training state-of-the-art general text embeddingTraining state-of-the-art general text embedding
Training state-of-the-art general text embedding
 
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICESSALESFORCE EDUCATION CLOUD | FEXLE SERVICES
SALESFORCE EDUCATION CLOUD | FEXLE SERVICES
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An Introduction
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptx
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 

CrontoSign

  • 1. Securing Financial Transactions Online Cronto Limited, +44 1223 750001, www.cronto.com
  • 2. Trojan Malware: Man-in-the-Browser No Transaction Signing = Stop-Gap • Extra passwords, secret questions, OTP tokens etc. DO NOT WORK! • Need to authenticate the TRANSACTION not just the user "These attacks have been successfully and repeatedly executed against many banks and their customers across the globe in 2009" Avivah Litan, vice president and analyst at Gartner. © 2012 Cronto Limited 2
  • 3. Choosing Transaction Signing Criteria Requirement Client Option Hardware Device & Mobile Application Data Capacity 60-100 free text characters User Experience The concept is familiar to the user Speed < 1s decoding performance Robustness Works on all mobile/computer screens and in various lighting conditions Personalisation Ability to Re-Personalise device/app Security Encrypted data, transaction signature Maturity Proven performance, ready for rollouts © 2012 Cronto Limited 3
  • 4. CrontoSign • Designed for online banking - full transaction signature - dynamic: no hardcoded use cases - effective personalisation • Based on simple familiar to user concept – take a picture • Uses colour to increase data capacity, speed and robustness • Available as mobile software and standalone hardware © 2012 Cronto Limited 4
  • 5. Cronto Visual Transaction Signing Cronto Visual Transaction Signing Click k 1. Bank generates the Cronto visual cryptogram erates the Cronto visual cryptogram a photo of the computer and Customer takes omer takes a photo of screen using the CrontoSign client. the computer sing the Cronto client application. © 2012 Cronto Limited 5
  • 6. Cronto Visual Transaction Signing Cronto Visual Transaction Signing Check k ck 2. Customer checks payment details on the r checks payment visual cryptogram to the web page and enters erates the Cronto details on the phone comparing omer takes a photo of the authorisation code if details are correct the computer mparing to the web page and enters orisationCronto client application. sing the code if details are correct © 2012 Cronto Limited 6
  • 7. Encrypted Free Text Transaction Encoding Bank chooses what data to encode and when © 2012 Cronto Limited 7
  • 8. Dynamic Personalisation • CronSign Device/App is distributed unpersonalised • Secure credentials provisioned via a CrontoSign image • Update credentials without replacing the device NO Seed Data stored by Cronto © 2012 Cronto Limited 8
  • 9. Try CrontoSign • Download CrontoSign demo app, available from: - Apple App Store - Android Market • www.crontosign.com/get • Use it at: - www.crontosign.com contact@cronto.com +44 1223 750001 www.cronto.com © 2012 Cronto Limited 9

Notes de l'éditeur

  1. \n
  2. \n
  3. \n
  4. \n
  5. \n
  6. \n
  7. \n
  8. \n
  9. \n