Smarter Authentication 3.1 improves protection against MITM attacks and supports Android’s fingerprint API
Oslo & Palo Alto, 25th February, 2016 – Encap Security, provider of uncompromising authentication for financial institutions, has today announced the release of version 3.1 of its Smarter Authentication platform. The update includes support for Android’s fingerprint API, and better protection against Man In The Middle (MITM) attacks.
The release builds on Encap’s support for Apple’s Touch ID and Samsung’s fingerprint sensor. With support for Android’s fingerprint API, all devices using this system can be used by financial institutions to provide fingerprint access to their services. The API is part of Android’s Marshmallow update, and is used by Google’s Nexus 5X and Nexus 6P devices, with more to follow.
Previous releases of Smarter Authentication have protected against MITM attacks at the network level, but this protection now extends to the OS level too. Previously all data communicated between the app and the Encap server was encrypted by the SSL layer on the device, making any network level intercepted data useless. Now all data is encrypted on the app layer before being passed to the SSL layer. Even devices that have been compromised by malware to have the SSL libraries manipulated or replaced by malicious code or are jailbroken will still be perfectly safe to use as a security credential.
Encap 3.1 also sees its white label Android authentication app rebuilt according to Google’s ‘Material Design’ guidelines, and new quick custom branding options built in that makes branding the app incredibly simple.
“We are dedicated to creating a platform that allows banks the freedom to add authentication methods as they become available - and offer that choice to their customers,” said Thomas Bostrøm Jørgensen, CEO, Encap Security. “Smarter Authentication 3.1 builds on our previous work by future-proofing our fingerprint options and making the app even safer to use – even if the device itself is compromised.”