Authentication Solution working at protocol layer to add that extra layer of security
on customer facing as well as internal applications.

MultiFactor Authentication


Black hat hackers’ biggest objective is to steal information for monetary gains. This is a major concern for all financial institutions today as they handle private information as well as finances. It is quite an easy task for an individual to capture usernames and passwords of other individuals by using multiple techniques like Sniffing, installing Keylogger etc. Finacus offers two-factor authentication system which is based on:

  • Something only the user knows (i.e. the knowledge factor)
  • Something only the user has (i.e. the possession factor)

Implementing two-factor authentication will reduce the losses suffered by financial institutions in terms of money and brand trust. The solution works at protocol layer and is the only Indian solution which is OATH certified.

Two Factor Authentication (2FA) is an extra layer of security that identifies user based on –

  • Something he knows (User Name / Password)
  • Something in the user’s possession
  • Something the user is

The existing authentication systems that act as first layer of security to login into the system are:

  • Username / Password entry
  • Card Swipe
  • Biometric inputs

FinacusMultiFactor Authentication system helps you to build an additional layer of security to carry out a transaction after successful login. This can be achieved by using different forms of authentication as below

Authentication Methods

  • OneTouch 2FA / PUSH Notifications
    Sends a PUSH notification on user's mobile through the Bank App with two options – 'Approve' or 'Reject'. Based on the input, the transaction is either accepted or declined
  • Soft Token
    Delivers a one-time password (OTP) to a user via a SMS text message sent on his mobile number or an email sent to his mail account. The transaction is continued only when the OTP is entered into the system
  • Mobile Based Token
    The One Time Password generation software is installed on any smart phone platform. The software uses the GPRS / 2G / 3G connection to connect to the Finacus server and authenticate the user
  • Hard Token
    It is a hardware / physical device that generates a new password every 90 seconds. The concerned system connected to Finacus server and hard token use same encryption algorithm to authenticate the user when he enters the password at a given time.
  • USB Based Token
    The product is integrated with Disk Level Encryption Software which encrypts the entire file system. The encrypted data can be read only when USB token is inserted and PIN is entered. Designed to securely store an individual's digital identity
  • Ease of integration and installation
  • Strong Authentication to prevent Identity Theft and other frauds
  • Regulatory Compliance
  • Integration PlugIns
  • Multiple Form Factors
  • Encryption and Privacy
  • Simple Administration
  • Possible Integration with Risk Based Transaction Algorithm
  • Competitive Costs
  • Mobile Banking
  • Internet Banking
  • E-commerce
  • POS / Retail Transactions
  • ATM
  • Bank's software systems
  • VPN
  • Mail Clients