• Initial enrollment of the device - The security token is only useful if you are sure it has arrived in the hands of its intended user. • Temporary account access - In the event a legitimate user's token is lost, stolen or destroyed there must be a secondary method of temporarily accessing accounts for emergency access control.
Authentify completes the security strategy when tokens are used by addressing potential security concerns and making sure legitimate customers can still access important accounts even if they are temporarily unable to use their token or other one time password device.
Application Overview
User receives security ID from issuing corporation. Instructions with the security ID (token, digital certificate, soft key, etc.) instruct user to visit web portal using their normal User ID and Pin/Password.
User enters security ID serial number at secure web portal site. Serial number triggers recall of users phone number from user profile.
Secure XML containing phone number passed from security ID issuer's web server to Authentify Telephony Center. Confirmation number displayed on web page. User completes Authentify process.
A confirmation number match indicates the computer, phone and user are all in the same place at the same time. An activation code is delivered over the phone and the user enters it to activate the security ID.
