FIDO2 Certification with CTAP 2.1 Support
TrustSec Secures FIDO2 Certification with CTAP 2.1 Support – A Game-Changer in Cybersecurity! We’re thrilled to announce a major milestone: TrustSec’s T-Shield FIDO2 Authenticator has officially achieved FIDO2 and U2F certifications, solidifying our position as a leader in cutting-edge security solutions! Built on the robust SAMSUNG OneChip smart card and powered by our advanced SLCOS technology, this achievement underscores our commitment to delivering unparalleled security and innovation. CTAP 2.1 Support: Elevating security standards with enhanced protection and a frictionless user experience. Biometric Strength: Phishing-resistant authentication for ultimate peace of mind. Smart Card Flexibility: Multi-application support with industry-leading security for diverse use cases. Official Recognition: TrustSec is now proudly listed in Microsoft Entra ID attestation as a trusted FIDO2 security key vendor! Achieving this certification reflects our unwavering commitment to cybersecurity excellence. Together, we are driving innovation and building a more secure digital future. LinkedIn #TrustSec #FIDO2 #CTAP21 #U2F #SLCOS #SamsungOneChip #Cybersecurity #SmartCard #MicrosoftEntraID #SecurityKeys #InnovationInSecurity
CPACE Applet
We are pleased to announce significant advancements within the CPACE applet: * CPACE Implementation Version 1.1: This update focuses on enhancing performance, security, and interoperability to address the dynamic requirements of modern payment systems. * BIO CPACE Implementation: We have introduced biometric authentication to CPACE transactions, providing a seamless and highly secure method for contactless payments. Both implementations have achieved functional readiness for PayCert certification, underscoring our dedication to pioneering innovation in the payment industry. Please stay connected for further developments as we continue to advance secure and efficient payment solutions. LinkedIn Post #CPACE #PaymentsInnovation #BiometricPayments #Contactless #PayCert #FutureOfPayments
TrustSec FIDO2 Smartcards – TrustSEC
TrustSec FIDO2 SMARTCARDS RELEASE 2020! Replace password-based authentication with TrustSec FIDO2 Smartcards for a hassle-free, secure passwordless authentication, and a smart design that fits into your wallet. TrustSec Fido2 smartcard – FIDO2 tech combined in smartcards! Smart cards have been internationally recognized for security and protection in companies and authorities for many years – as they are extremely difficult to duplicate or forge and has been built-in tamper-resistance. Passwordless login is a technology game-changer, it brings a monumental change to how business users and consumers will securely log in to applications and services. With FIDO2 technology, TrustSec worked on a variety of solutions/ devices to remove the dependency on password-based logins. Based on both FIDO2 and smartcard qualifications, TrustSec has developed a solution that is a combination of both features to come up with FIDO2 SMARCARDS, a simpler & more flexible solution for secure user authentication. With TrustSec’s new release of FIDO2 Devices, a more up-to-date authentication technology will serve businesses, individuals, and big entities. Fido2 smartcards are securities keys that support the FIDO2 standard, the keys are used to eliminate data theft from hackers over the web. They unlock Windows 10 and Mac plus 2FA for major cloud accounts and Support Google, Facebook, Dropbox, Microsoft account, Salesforce, GitHub, Twitter, and many more applications. For the most interesting part, the new keys are user-friendly, the keys are smartcards to be easily held in wallets or badges, unlike the regular security keys. About FIDO2 Technology FIDO2 is the latest specification of FIDO Alliance (Fast Identity Online), which was created to provide open and license-free standards for secure, Web Authentication. First came FIDO U2F, then FIDO UAF and lately followed by the FIDO2. At its core, FIDO2 consists of the Client to Authenticator Protocol (CTAP) and the W3C standard WebAuthn, which together enable authentication, where users identify themselves with cryptographic authenticators (such as biometrics or PINs) or external authenticators (such as FIDO keys, wearable or mobile devices) to a, trusted WebAuthn remote peer (also known as a FIDO2 server) that typically belongs to a website or web app. How FIDO2 SMARTCARD technology helps at the pandemic response FIDO2 SMARTCARDS are easy and convenient security keys that cope with the significant changes following the recent pandemic. The FIDO2 SMARTCARD supports all of the major security protocols over both Contact and Contactless “NFC” — and the addition of NFC makes it a better option for those who want to use the same key on their desktops, laptops and mobile phones or tablets. Moreover, TrustSec fido2 smartcards serve business the most especially after the pandemic, as businesses are the most affected by post the lockdown all across the globe. We believe stringent rules in the workplace, contactless solutions such as NFC will definitely help decrease infection rates. Based on the International Trade Centre (ITC) publication describing the impact of the lockdown associated with the COVID-19 pandemic response on small and medium-sized enterprises (SMEs), a 15-point action plan that encourages businesses, business support organizations, and governments to prepare for a “new normal,” one where society is resilient, digital, inclusive, and sustainable. We believe FIDO2 smartcards will be part of this technology transformation that serves organizations, and governments. Check TrustSec Security keys range to choose from single-factor, two-factor, or multi-factor keys for secure login, over different platforms for different verticals with a variety of authentication scenarios. Fido2 Tokens Biometric Fido u2f security key Biometric PKI Token OTP (one time password) Secure Network Access Secure Data Exchange
Forget your password – use your FINGERPRINT! match on card
Forget your password – use your FINGERPRINT! match on card match on card “Mr. Francis Galton affirms that ‘the patterns of the papillary ridges upon the bulbous palmar surfaces of the terminal phalanges of the fingers and thumbs are absolutely unchangeable throughout life, and show in different individuals an infinite variety of forms and peculiarities. The chance of two finger-prints being identical is less than one in sixty-four thousand million. If, therefore, two finger-prints are compared and found to coincide exactly, it is practically certain that they are prints of the same finger of the same person; if they differ, they are made by different fingers. – Lance”[1] The evolution of the smartcard – biometrics vs. two-factor authentication ( match on card ) Biometric smartcards are multi-factor authenticators (MFA). This is achieved through the addition of an extra layer of security; a fingerprint feature to authenticate the user in addition to the common two factors of authentication used – pin and hardware. The two-factor authentication solutions might expose users to fraud in the event that cards are stolen or pins are cracked. However, unlike standard smartcards, biometric smartcards enhance security on the card due to the probability of a biological feature of a person being identical with another person is less than one in sixty-four thousand million. Biometric smartcards can be thought of as turnkey solution that combines security, flexibility, durability and easy user experience. These cards achieve such security levels thanks to their onboard microprocessors processing the data directly, without remote connections. The biometric technology used depends on the Match-on-Card (MoC) that will store the holder’s biometric data and protect such communications with encryption. Biometric smartcards demonstrate a high level of flexibility as the technology used within the card is adaptable enough to integrate with any applet, is durable enough to last for many years, and provides user-friendliness; the card’s portability makes it easy for users to carry in their wallet. Biometric smartcards are the best solution in providing ultimate security to end-users. Especially in sensitive environments that require a high level of security in logical and system access. Such examples are governmental sectors, where biometric smartcards are used as accurate digital identification solution to access security-restricted buildings or access various government applications (border control, national identification cards, voter registration, and passports). Biometric smartcards also bring a security benefit to the healthcare sector where biometrics could be used by government-affiliated healthcare entities to access a patient’s medical records and ensure fraud prevention. The biometric data never leaves the card. match on card The technology used in TrustSec biometric smartcards eliminates cyberattacks by avoiding the vulnerability of storing the biometrics data on database servers. These servers may be based on insecure networks that are vulnerable to cyberattacks that might lead to abuse of the biometric data of a person. TrustSec biometric smartcards adopt Match-on-Card technology that eliminates the need for the database by both storing and processing biometric data directly on the secure microcontroller of the smartcard. Match-on-Card technology works by comparing the fingerprint presented by the user with the stored fingerprint in the secure environment, without having to send fingerprint data to a terminal or a remote server. Match-on-Card technology is typically performed in three steps, Fingerprint capturing (Acquisition), Features Extraction (Minutiae extraction) into a template Templates Matching. The Match-on-Card feature eliminates the risk of loss or theft of the cards entirely, as there would be no risk of the biometric smartcard being used without the unique fingerprint of its holder. Privacy comes first match-on-card Biometrics are biologically unique to the individual; therefore, once compromised, the individual has no recourse and is at a heightened risk for identity theft and therefore likely to withdraw from biometric enrolment. The majority of the population fear the loss of their identity through identity theft. This, in turn, has raised regulations governing secure biometric data collection, the use of such data and the processing of said data more complex. The gap between enterprises who wish to apply biometric technology and the unease of the users concerning such technology, is solved by the use of Match-on-Card technology to save the users’ identity while applying high-security measures in the enterprise at the same time. About TrustSec smartcard OS “SLCOS” match on card TrustSec smartcard OS is developing an open Java Card operating system that manages the smartcard resources as a principal component in the security chain; it protects the personal identity of the user and provides the required security services to the end-users. The OS works in conjunction with secure controllers from Infineon Technologies. It also allows third-party vendors to build embedded applications and applets without affecting security. The beta version was released in 2016 and TrustSec smart card OS has been in continuous development throughout the last five years over multiple Infineon controllers (SLE78 and SLC52) and is now planning to port its SLCOS to Infineon’s SLC38/B. SLCOS is now compatible with Java Card™ 3.0.4 and Biometry1toN Package from Java Card™ 3.0.5 is also implemented, as well as Global Platform 2.2.1 with MoC schemes (templates stored on the card, matching is done on card). TrustSec has entered into joint agreement with the leading biometric sensors providers in the market to supply biometrically enabled security solutions for identity management, access control, and payment authentication applications. In 2019, TrustSec collaborated with NEXT Biometrics to integrate their fingerprint sensor with TrustSec’s SLCOS operating system with a certified Common Criteria PKI applet providing the first version of its contact biometric smart card. The following year TrustSec made progress in integrating both Fingerprints and IDEX biometrics fingerprint sensors with SLCOS in order to provide both biometric contact and contactless smartcards. Worry-free payments with biometric smartcards solution Biometric technology brings a whole new level of security to contactless payments. No more skimming, no more forgetting which PIN to use, no need to touch the terminal, and no more uncertain payments – only trusted contactless payments. Payment networks and issuers can expect an overall reduction in fraud rates for lost and stolen cards as the
TrustSEC Partnership with CardLab & eSignus – TrustSEC
TrustSEC is very pleased to partner with eSignus and CardLab in the HASHWallet solution that deploys biometric authentication over hardware wallet. Delving into the design of the HASHhWallet solution represents an innovative use case, that solves the security problems of cryptocurrency and cryptoassets wallets. After continuous development and successful collaboration of TrustSEC and CardLab to introduce a biometric card system combining security, and flexibility thanks to the on-board microprocessors that process all biometric and non-biometric data directly on the card, without a remote matching template. The Match-on-Card (MoC) technology stores the holder’s biometric data and protect the communications with encryption, and based on this solution the two companies have played a role in leveraging the usage of biometric smart cards that are mainly developed for ID, access, and payments, to be serving the digital transformation to Hardwallets in cooperation with the leading Spanish technology startup eSignus. eSignus is a Spanish startup led by a group of senior entrepreneurs highly experienced in the financial, technology, and crypto-security sectors. “We have been very happy to work with CardLab and eSignus on an innovative hardware wallet in the shape of a convenient Smart Card to safeguard crypto-assets, I would also like to pay tribute to Fingerprints in Sweden and Infineon Technologies in Germany, for their contributions and positive collaboration. We are looking forward to more collaborations that will shape the future of financial services digital transformation” says TrustSEC CEO, Magdy Sharawy
TrustSEC Launches FIDO CTAP 2.1, Elevating Security Solutions for Global Users – TrustSEC
TrustSEC Launches FIDO CTAP 2.1, Elevating Security Solutions for Global Users Szczecin, Poland – June 7, 2023 – TrustSEC, the leading provider of smartcard operating systems and applets, is thrilled to announce the release of FIDO CTAP 2.1. This milestone achievement marks a significant step forward in the company’s commitment to delivering cutting-edge security solutions to individuals and organizations worldwide. The latest release from TrustSEC comes with enhanced features and functionalities designed to meet the evolving security needs of the digital landscape. With FIDO CTAP 2.1, users can expect advanced security measures that ensure robust protection for their sensitive information. Key Highlights of FIDO CTAP 2.1: Enhanced Security Measures: Robust security measures have been implemented to mitigate potential threats and attacks, ensuring a higher level of protection for our clients’ sensitive data and systems. Expanded Device Support: TrustSEC FIDO CTAP 2.1 extends compatibility to a broader range of devices, allowing users to leverage various authenticators, such as fingerprint readers, security keys, and biometric sensors. Streamlined Deployment: The deployment process has been simplified, making it easier for organizations to integrate FIDO2 authentication into their existing systems and infrastructure, reducing implementation time and effort. Improved User Experience: TrustSEC FIDO CTAP 2.1 focuses on optimizing the user experience, ensuring a seamless and intuitive authentication process, thereby enhancing productivity and user satisfaction. FIDO CTAP2.1 Packaging by TrustSEC empowers clients with the ease of secure authentication, offering them the flexibility to leverage FIDO CTAP2.1 on a range of devices. This includes smart cards, biometric smart cards, and USB tokens. With this comprehensive solution, clients can confidently enhance their authentication mechanisms across multiple platforms, ensuring robust security and user-friendly experiences. “We are excited to introduce FIDO CTAP 2.1 as a significant advancement in our mission to provide state-of-the-art security solutions,” said Magdy Sharawy, CEO at TrustSEC. “With this release, we aim to empower individuals and organizations worldwide with robust security measures that safeguard their digital identities and information.” About TrustSEC TrustSEC is a leading company in the information security field, founded by internationally recognized information security and cryptography experts. Using the latest technology in cryptography and biometric technology, TrustSEC develops innovative highly secure solutions for securing identities throughout the digital transformation journey of enterprises and governments (healthcare, utilities, transportation, banking, etc.) With its uniquely developed biometric operating system for smart cards, BIO-SLCOS, TrustSEC offers a wide range of secure hardware and software solutions for authentication, identification, and payment as FIDO2 and PKI applets for authentication and CPACE / CPA common payment applications for payment, as well as other customized applications. Further information is available at www.trustsec.net. The TrustSEC team is showcasing their latest authentication, payment, and crypto assets with BIO-SLCOS during Identity Week Europe, June 13-14, 2023, in Amsterdam/Netherlands.