Your SlideShare is downloading. ×
0
CrontoSign
CrontoSign
CrontoSign
CrontoSign
CrontoSign
CrontoSign
CrontoSign
CrontoSign
CrontoSign
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

CrontoSign

788

Published on

Published in: Technology, Economy & Finance
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
788
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • Transcript

    • 1. Securing Financial Transactions Online Cronto Limited, +44 1223 750001, www.cronto.com
    • 2. Trojan Malware: Man-in-the-Browser No Transaction Signing = Stop-Gap • Extra passwords, secret questions, OTP tokens etc. DO NOT WORK! • Need to authenticate the TRANSACTION not just the user"These attacks have been successfully and repeatedly executed against many banks and theircustomers across the globe in 2009" Avivah Litan, vice president and analyst at Gartner. © 2012 Cronto Limited 2
    • 3. Choosing Transaction SigningCriteria RequirementClient Option Hardware Device & Mobile ApplicationData Capacity 60-100 free text charactersUser Experience The concept is familiar to the userSpeed < 1s decoding performanceRobustness Works on all mobile/computer screens and in various lighting conditionsPersonalisation Ability to Re-Personalise device/appSecurity Encrypted data, transaction signatureMaturity Proven performance, ready for rollouts © 2012 Cronto Limited 3
    • 4. CrontoSign • Designed for online banking - full transaction signature - dynamic: no hardcoded use cases - effective personalisation • Based on simple familiar to user concept – take a picture • Uses colour to increase data capacity, speed and robustness • Available as mobile software and standalone hardware © 2012 Cronto Limited 4
    • 5. Cronto Visual Transaction Signing Cronto Visual Transaction Signing Clickk 1. Bank generates the Cronto visual cryptogramerates the Cronto visual cryptogram a photo of the computer and Customer takesomer takes a photo of screen using the CrontoSign client. the computersing the Cronto client application. © 2012 Cronto Limited 5
    • 6. Cronto Visual Transaction Signing Cronto Visual Transaction Signing Checkkck 2. Customer checks payment details on ther checks payment visual cryptogram to the web page and enterserates the Cronto details on the phone comparingomer takes a photo of the authorisation code if details are correct the computermparing to the web page and entersorisationCronto client application.sing the code if details are correct © 2012 Cronto Limited 6
    • 7. Encrypted Free Text Transaction Encoding Bank chooses what data to encode and when © 2012 Cronto Limited 7
    • 8. Dynamic Personalisation• CronSign Device/App is distributed unpersonalised• Secure credentials provisioned via a CrontoSign image• Update credentials without replacing the device NO Seed Data stored by Cronto © 2012 Cronto Limited 8
    • 9. Try CrontoSign• Download CrontoSign demo app, available from: - Apple App Store - Android Market• www.crontosign.com/get• Use it at: - www.crontosign.com contact@cronto.com +44 1223 750001 www.cronto.com © 2012 Cronto Limited 9

    ×