BIO-key MobileAuth

BIO-key MobileAuth – The most flexible and secure way to authenticate
BIO-key MobileAuth™ with PalmPositive™, FacePositive™, Push Token, and local biometric support provides fast, passwordless, secure access to your apps leveraging a mobile device. MobileAuth can be used for multi-factor authentication (MFA) or passwordless workflows. BIO-key offers the broadest range of authentication solutions to provide individuals with flexibility while meeting not only the security needs of individuals but also those of their employers or organizations who want to provide flexibility and convenience without sacrificing security.

BIO-key MobileAuth works with BIO-keys WEB-key or PortalGuard Identity-as-a-Service (IDaaS) Multi-Factor Authentication (MFA) and Single Sign-on (SSO) solutions to streamline logins while increasing security. BIO-key also supports Apple device biometrics such as TouchID/FaceID, for those organizations that want that option.


Why use biometrics from BIO-key?
BIO-key protects users from identity fraud and other abuse scenarios with biometric-based solutions, including PalmPositive™ and FacePositive™. Once a user registers their biometrics for palm or face, only the biometrically registered user can authenticate. BIO-key reduces the risk of fraud and unauthorized access to applications and sensitive data.

Unlike TouchID/FaceID, which allows MORE than one user to register their face or fingerprints for access on a particular Apple phone or device, MobileAuth limits the registration to a single authorized user for specific apps managed by the PortalGuard IDaaS solution. This means that no additional enrolled users on the phone, nor someone who has SIM-swapped your phone number and even a hacker with phished credentials can authenticate into the apps and environments protected by BIO-key solutions. Only the intended and authorized user can authenticate.


Availability:
Once a user has registered, they will be able to work across the ecosystem and from any device without the need to register their biometrics repeatedly. Even if users get a new phone or lose their phones after a single registration with MobileAuth, WEB-key or PortalGuard will recognize their pre-approved MobileAuth authentication methods so they can access all centrally managed apps from a variety of devices, such as a new phone if theirs is lost or stolen if they choose to use MobileAuth™ with PalmPositive™ and/or FacePositive™.

Convenience:
Biometric authentication with MobileAuth™ with PalmPositive™ and/or FacePositive™ gives users the flexibility to buy a new phone when they want without worrying about re-registering and setting up security again.

Non-transferable:
Once a users biometric traits are registered with MobileAuth™ with PalmPositive™ and/or FacePositive™, their traits are linked to a single, centrally managed user profile, which manages authorized access to managed apps.

Security:
Biometrics are extremely unlikely to be phished, stolen, or forged. Built-in liveness detection prevents imposters from using scanned pictures or fakes. Biometrics provide higher security than passwords or other popular methods of authentication.

Accuracy:
PalmPostive:
Using BIO-keys palm scan is 400x more accurate than the standard user-controlled device-based biometric authentication methods in many phones and devices today.

FacePostive:
BIO-key utilizes Paravision facial matching. For several years, Paravision has consistently achieved the best facial matcher scores on NIST tests.