INTEGRATED

3-FACTOR

AUTHENTICATION

 

AGSES

 

 

AGSES

The AGSES technology was designed with the objective of making the digital lives of users more secure but also a lot easier

  • More secure - with the AGSES technology, services can only be used by persons who are in fact authorized to use these services.
  • Easier - the AGSES technology allows for the use of a multitude of services with only one device

The AGSES Card plays a decisive role in the AGSES system - it is the card that unambiguously identifies a user towards a service. The identification is based on the user's biometric data which is exclusively under their control.

The AGSES Card is used both for access / entry to systems and services (also called authentication) but it may also be used as a means to convey a definite and forge-proof expression of its owner's will (also called transaction signature). Service providers can easily implement the AGSES technology as an authentication system into their existing environment without the need to carry out considerable adjustments.

The AGSES Card user can use their card and the offered AGSES authentication services from any place that has an infrastructure allowing a connection to the service. Using the example of internet banking, this could be a smartphone with a web browser and a display size similar to that of the AGSES Card, because the AGSES Card and the service provider's portal communicate via light signals, the so-called "flickering".

Understanding how AGSES works:

To get the basic idea of AGSES, imagine the following situation:

There are two people (person A and person B), geographically separated from each other. Each of them has a key able to unlock a box which cannot be opened by anybody else. Person A thinks up a code (e.g. N8ZG95), writes it on a piece of paper, puts it into the box and locks the box with their key. The box is forwarded to person B (no matter by which means). Person B opens the box with his key and reads the code - as a consequence, person A and person B know the code. If person B now calls person A and tells them the code (N8ZG95), person A knows for sure that the person on the other end of the line definitely is person B. It is utterly insignificant whether the call has been encrypted or not in order for person A to clearly identify his/her conversational partner as person B.

  • The AGSES server generates an OTP (One Time Password) that is intended for and can only be decrypted and displayed by one particular AGSES Card.
  • The owner of the AGSES Card requests the transmission of the OTP by entering their card's unique card number
  • The AGSES server receives the request and generates a OTP for the card with that specific card number.
  • The OTP's basic information is sent to the AGSES Card in an encrypted form (via flickering message) and only the intended recipient card can decrypt and display the OTP.
  • Thus only two systems know of the OTP: The AGSES Server and one specific AGSES Card.
  • This OTP is visible only to the card owner, who can trigger the display of the OTP by identifying themselves to the card using their fingerprints.
  • The card user that the OTP is displayed to sends the information (also called "response code") back to the AGSES server.
  • The AGSES server checks whether the returned information corresponds with the OTP known to it or not - if it does, the server positively identifies the sender of the message as the particular AGSES Card's owner and therefore grants access.
  • For the next access request, a new OTP will be prompted and generated.

To see the AGSES card in operation please click here: AGSES – How It Works - AGSES - How It Works (9.3Mb) Right Click on link to download.

For more information on the AGSES Solutions or to arrange a meeting with a Unicus representative to discuss further, please email your contact details to: info@unicus-ict.co.za

 

 

 

________________________________________________________________________________________________

All Rights Reserved. Copyright ©UNICUS-ICT Solu(it)ons 2013. Designed & Hosted by BirdieBox Internet Services - www.bbis.co.za