SlideShare ist ein Scribd-Unternehmen logo

CrontoSign

cronto
cronto
TechnologieWirtschaft & Finanzen
1 von 9
Securing Financial Transactions Online Cronto Limited, +44 1223 750001, www.cronto.com
Trojan Malware: Man-in-the-Browser No Transaction Signing = Stop-Gap • Extra passwords, secret questions, OTP tokens etc. DO NOT WORK! • Need to authenticate the TRANSACTION not just the user "These attacks have been successfully and repeatedly executed against many banks and their customers across the globe in 2009" Avivah Litan, vice president and analyst at Gartner. © 2012 Cronto Limited 2
Choosing Transaction Signing Criteria Requirement Client Option Hardware Device & Mobile Application Data Capacity 60-100 free text characters User Experience The concept is familiar to the user Speed < 1s decoding performance Robustness Works on all mobile/computer screens and in various lighting conditions Personalisation Ability to Re-Personalise device/app Security Encrypted data, transaction signature Maturity Proven performance, ready for rollouts © 2012 Cronto Limited 3
CrontoSign • Designed for online banking - full transaction signature - dynamic: no hardcoded use cases - effective personalisation • Based on simple familiar to user concept – take a picture • Uses colour to increase data capacity, speed and robustness • Available as mobile software and standalone hardware © 2012 Cronto Limited 4
Cronto Visual Transaction Signing Cronto Visual Transaction Signing Click k 1. Bank generates the Cronto visual cryptogram erates the Cronto visual cryptogram a photo of the computer and Customer takes omer takes a photo of screen using the CrontoSign client. the computer sing the Cronto client application. © 2012 Cronto Limited 5
Cronto Visual Transaction Signing Cronto Visual Transaction Signing Check k ck 2. Customer checks payment details on the r checks payment visual cryptogram to the web page and enters erates the Cronto details on the phone comparing omer takes a photo of the authorisation code if details are correct the computer mparing to the web page and enters orisationCronto client application. sing the code if details are correct © 2012 Cronto Limited 6
Encrypted Free Text Transaction Encoding Bank chooses what data to encode and when © 2012 Cronto Limited 7
Dynamic Personalisation • CronSign Device/App is distributed unpersonalised • Secure credentials provisioned via a CrontoSign image • Update credentials without replacing the device NO Seed Data stored by Cronto © 2012 Cronto Limited 8
Try CrontoSign • Download CrontoSign demo app, available from: - Apple App Store - Android Market • www.crontosign.com/get • Use it at: - www.crontosign.com contact@cronto.com +44 1223 750001 www.cronto.com © 2012 Cronto Limited 9

Empfohlen

Proj 686 -_dep_gilberto_ribeiro
Proj 686 -_dep_gilberto_ribeiroProj 686 -_dep_gilberto_ribeiro
Proj 686 -_dep_gilberto_ribeiroGerson Peña
 
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...Tribunal de Contas da União - TCU (Oficial)
 
CGD | Investor journal n01_2016
CGD | Investor journal n01_2016CGD | Investor journal n01_2016
CGD | Investor journal n01_2016Caixa Geral Depósitos
 
MFG Extended Presentation 11 26 15
MFG Extended Presentation 11 26 15MFG Extended Presentation 11 26 15
MFG Extended Presentation 11 26 15Mohamed Gamal
 
6 Ways Your Brain Transforms Sound into Emotion
6 Ways Your Brain Transforms Sound into Emotion6 Ways Your Brain Transforms Sound into Emotion
6 Ways Your Brain Transforms Sound into EmotionIsland Better Hearing
 
BBC 2.0 Years On
BBC 2.0 Years OnBBC 2.0 Years On
BBC 2.0 Years OnEduserv Foundation
 
Carlos eduardo carvalho projeto 192 14 12 2009
Carlos eduardo carvalho projeto 192 14 12 2009Carlos eduardo carvalho projeto 192 14 12 2009
Carlos eduardo carvalho projeto 192 14 12 2009Pablo Mereles
 
Membership Communities: Facebook Groups vs Forums
Membership Communities: Facebook Groups vs ForumsMembership Communities: Facebook Groups vs Forums
Membership Communities: Facebook Groups vs ForumsThe Membership Guys
 

Empfohlen

Proj 686 -_dep_gilberto_ribeiro
Proj 686 -_dep_gilberto_ribeiroProj 686 -_dep_gilberto_ribeiro
Proj 686 -_dep_gilberto_ribeiroGerson Peña
 
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...
Painel 04 03 - leon - Construção de modelos preditivos para melhoria na sel...Tribunal de Contas da União - TCU (Oficial)
 
CGD | Investor journal n01_2016
CGD | Investor journal n01_2016CGD | Investor journal n01_2016
CGD | Investor journal n01_2016Caixa Geral Depósitos
 
MFG Extended Presentation 11 26 15
MFG Extended Presentation 11 26 15MFG Extended Presentation 11 26 15
MFG Extended Presentation 11 26 15Mohamed Gamal
 
6 Ways Your Brain Transforms Sound into Emotion
6 Ways Your Brain Transforms Sound into Emotion6 Ways Your Brain Transforms Sound into Emotion
6 Ways Your Brain Transforms Sound into EmotionIsland Better Hearing
 
BBC 2.0 Years On
BBC 2.0 Years OnBBC 2.0 Years On
BBC 2.0 Years OnEduserv Foundation
 
Carlos eduardo carvalho projeto 192 14 12 2009
Carlos eduardo carvalho projeto 192 14 12 2009Carlos eduardo carvalho projeto 192 14 12 2009
Carlos eduardo carvalho projeto 192 14 12 2009Pablo Mereles
 
Membership Communities: Facebook Groups vs Forums
Membership Communities: Facebook Groups vs ForumsMembership Communities: Facebook Groups vs Forums
Membership Communities: Facebook Groups vs ForumsThe Membership Guys
 
6. Improving ST2 KPI
6. Improving ST2 KPI6. Improving ST2 KPI
6. Improving ST2 KPIPHEScreening
 
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...PHEScreening
 
Sudden cardiac death
Sudden cardiac deathSudden cardiac death
Sudden cardiac deathPHEScreening
 
Зачем лин-менеджеру управлять знаниями?
Зачем лин-менеджеру управлять знаниями?Зачем лин-менеджеру управлять знаниями?
Зачем лин-менеджеру управлять знаниями?Всеукраинский Форум "Развитие производственных систем"
 
Content Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irContent Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irParham Abyazi
 
Nicol Ripon NOCN presentation
Nicol Ripon NOCN presentationNicol Ripon NOCN presentation
Nicol Ripon NOCN presentationMike Harris
 
EN_T-Time 1 2015
EN_T-Time 1 2015EN_T-Time 1 2015
EN_T-Time 1 2015Gary M. Gladysz, PhD
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGGoogle AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGSujit Pal
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 

Weitere ähnliche Inhalte

Andere mochten auch

6. Improving ST2 KPI
6. Improving ST2 KPI6. Improving ST2 KPI
6. Improving ST2 KPIPHEScreening
 
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...PHEScreening
 
Sudden cardiac death
Sudden cardiac deathSudden cardiac death
Sudden cardiac deathPHEScreening
 
Content Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irContent Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irParham Abyazi
 
Nicol Ripon NOCN presentation
Nicol Ripon NOCN presentationNicol Ripon NOCN presentation
Nicol Ripon NOCN presentationMike Harris
 

Andere mochten auch (7)

6. Improving ST2 KPI
6. Improving ST2 KPI6. Improving ST2 KPI
6. Improving ST2 KPI
 
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
AAA London Network Event 27 Nov 2015 Louise Wilkinson clinical audit presen...
 
Sudden cardiac death
Sudden cardiac deathSudden cardiac death
Sudden cardiac death
 
Зачем лин-менеджеру управлять знаниями?
Зачем лин-менеджеру управлять знаниями?Зачем лин-менеджеру управлять знаниями?
Зачем лин-менеджеру управлять знаниями?
 
Content Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.irContent Marketing - www.KoalaDesign.ir
Content Marketing - www.KoalaDesign.ir
 
Nicol Ripon NOCN presentation
Nicol Ripon NOCN presentationNicol Ripon NOCN presentation
Nicol Ripon NOCN presentation
 
EN_T-Time 1 2015
EN_T-Time 1 2015EN_T-Time 1 2015
EN_T-Time 1 2015
 

Kürzlich hochgeladen

From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGGoogle AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGSujit Pal
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...shyamraj55
 

Kürzlich hochgeladen (20)

From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGGoogle AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAG
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
 

CrontoSign

  • 1. Securing Financial Transactions Online Cronto Limited, +44 1223 750001, www.cronto.com
  • 2. Trojan Malware: Man-in-the-Browser No Transaction Signing = Stop-Gap • Extra passwords, secret questions, OTP tokens etc. DO NOT WORK! • Need to authenticate the TRANSACTION not just the user "These attacks have been successfully and repeatedly executed against many banks and their customers across the globe in 2009" Avivah Litan, vice president and analyst at Gartner. © 2012 Cronto Limited 2
  • 3. Choosing Transaction Signing Criteria Requirement Client Option Hardware Device & Mobile Application Data Capacity 60-100 free text characters User Experience The concept is familiar to the user Speed < 1s decoding performance Robustness Works on all mobile/computer screens and in various lighting conditions Personalisation Ability to Re-Personalise device/app Security Encrypted data, transaction signature Maturity Proven performance, ready for rollouts © 2012 Cronto Limited 3
  • 4. CrontoSign • Designed for online banking - full transaction signature - dynamic: no hardcoded use cases - effective personalisation • Based on simple familiar to user concept – take a picture • Uses colour to increase data capacity, speed and robustness • Available as mobile software and standalone hardware © 2012 Cronto Limited 4
  • 5. Cronto Visual Transaction Signing Cronto Visual Transaction Signing Click k 1. Bank generates the Cronto visual cryptogram erates the Cronto visual cryptogram a photo of the computer and Customer takes omer takes a photo of screen using the CrontoSign client. the computer sing the Cronto client application. © 2012 Cronto Limited 5
  • 6. Cronto Visual Transaction Signing Cronto Visual Transaction Signing Check k ck 2. Customer checks payment details on the r checks payment visual cryptogram to the web page and enters erates the Cronto details on the phone comparing omer takes a photo of the authorisation code if details are correct the computer mparing to the web page and enters orisationCronto client application. sing the code if details are correct © 2012 Cronto Limited 6
  • 7. Encrypted Free Text Transaction Encoding Bank chooses what data to encode and when © 2012 Cronto Limited 7
  • 8. Dynamic Personalisation • CronSign Device/App is distributed unpersonalised • Secure credentials provisioned via a CrontoSign image • Update credentials without replacing the device NO Seed Data stored by Cronto © 2012 Cronto Limited 8
  • 9. Try CrontoSign • Download CrontoSign demo app, available from: - Apple App Store - Android Market • www.crontosign.com/get • Use it at: - www.crontosign.com contact@cronto.com +44 1223 750001 www.cronto.com © 2012 Cronto Limited 9

Hinweis der Redaktion

  1. \n
  2. \n
  3. \n
  4. \n
  5. \n
  6. \n
  7. \n
  8. \n
  9. \n