PocketID

Decentralized, Password-less Authentication

Overview

Cognitas PocketID is a decentralized, password-less authentication solution that leverages user mobile devices to simplify adoption and maximize usability. PocketID relies on public key cryptography to securely store authentication keys on user mobile devices rather than on a central server repository, protecting the infrastructure against malicious attacks and addressing compliance and privacy concerns brought on by regulations such as GDPR. PocketID Federation Services extends a single strong authentication event to associated hybrid cloud environments.

Key Features

  • Enables high level of trust of end-users via decentralized, password-less authentication with biometric traits (fingerprint, facial recognition, etc.).
  • Decentralized mode leverages asymmetric key encryption to ensure that authentication keys are stored securely on user mobile devices rather than on a central server repository. This makes hacking attempts against a central server for the purpose of obtaining authentication keys (i.e., "data breaches") obsolete, and simplifies compliance for regulations such as GDPR.
  • PocketID's "ladder of trust" allows the enterprise to balance security with usability for identity assurance--the ability to validate during registration that a user is who he claims to be. The "ladder of trust" includes support for biometrics and location/geofencing.
  • PocketID Authentication Proxy address one of the key challenges in implementing strong authentication: transitioning a site currently using passwords to one using multi-factor authentication. PocketID Authentication Proxy enables this transition with no changes to the existing web application; only configuration on URL patterns (and other request/response information) is required. Available for major web servers, including Apache and IIS.
  • PocketID Federation Services extends a single PocketID authentication event for use on configured SaaS, PaaS, and IaaS providers. Federation is provided through the use of both SAML and OpenID Connect, with out-of-the-box support for popular services such as Office 365 and SalesForce.
  • Integration with Windows Hello for Business to support proximity-based unlocking of a Windows 10 device using a mobile device running PocketID. This authentication event can then extend using Windows Hello for Business and PocketID Federation Services to other services requiring authentication for truly seamless SSO, a key part of the Secure Seamless Workspace.
  • PocketID Server is available both on-premises or as a cloud service. PocketID clients available on iOS and Android devices.

Threats overwhelm passwords. Restore trust with Cognitas PocketID.