FAQs

Consumer FAQs

IdentityX ensures that only you can authorize your financial / business transactions or access your most important and personal information. Using your smart phone, IdentityX offers risk solutions and empowers you to securely establish your identity through a combination of encryption, PIN entry, location-based technology, and biometrics such as voice, face and palm image matching.

Why isn’t a password enough?

Passwords, when used alone, are vulnerable to many attacks:

How does IdentityX protect my identity?

IdentityX ties your identity directly to you. Unlike a simple PIN or password that can be lost, stolen, or guessed, IdentityX uses a number of authentication methods, including biometric matching, to ensure that only you can authorize IdentityX-protected transactions.

What types of authentication does IdentityX employ?

IdentityX technology combines multiple authentication techniques: something you have (a smart phone), something you know (a PIN/passphrase), something you are (multi-modal biometrics – face, voice, palm), and somewhere you are (GPS). For a very high risk transaction, this means that you would need to possess your unique phone, know your PIN, submit both a picture of your face and sample of yo

How does IdentityX work?

IdentityX is comprised of applications on both a server (IdentityX Server) and the customer’s mobile device (IdentityX Authenticator). When the customer initiates a transaction on the Service Provider’s website (e.g., transferring money through online banking), a request is made to the IdentityX Server for verification. Depending on the type/level of transaction and the configured verification methods associated with that transaction level, the customer is prompted to enter identity verification data on their mobile device (i.e., some combination of biometrics and/or passwords),

Will I have to perform full biometric authentication every time I want to use IdentityX?

No, the steps that you must take in order to authenticate yourself are configurable, either by you and/or your Service Provider (e.g., bank). Authentication that uses biometric matching will typically be for high risk transactions.

What happens if I don’t have a phone connection?

Full IdentityX functionality can be acquired through any cellular phone connection with data capabilities. Limited functionality is available through SMS messaging for phones that do not have data capabilities. If a specific environment does not have an available phone connection at all, IdentityX can also be configured to use an available wireless connection.

How do I benefit from IdentityX?

Using IdentityX brings a number of basic advantages to the consumer:

Which phones work with IdentityX?

At this time, IdentityX supports iPhone, Android, and Blackberry phones. Development is currently underway to support Symbian-based phones.

IdentityX also supports "regular" phones that do not have data processing capabilities. By providing the ability to send messages to such pre-registered phones, IdentityX provides an out-of-band authentication process suitable for lower risk transactions.

How does IdentityX protect my privacy?

IdentityX protects your identity by ensuring that no authentication information is stored on the phone. The IdentityX design emphasizes a model in which your phone only collects and transmits authentication information (such as your PIN, face/palm photo, and voice sample) -- it is not stored locally on the phone. This provides you with the peace of mind of knowing that if you ever lost your phone, an attacker could not extract personal information for future use.

Isn't a One-Time-Passcode generating token the best security?

As you may be aware, security professionals are abuzz over the March 17, 2011 announcement from RSA that a severe security breach had occurred on their servers. Although details were not disclosed, it is clear that a compromise of secret server-stored “seed” codes represents a serious and far-reaching weakness of solutions relying on one-time passcode (OTP)-generating tokens. For standard security tokens that display a changing series of digits, these secret seed fil

Can we rebrand the IdentityX interface?

Yes, we anticipate the majority of IdentityX solutions to be rebranded by the Service Provider. For instance, if Acme Bank wishes to employ IdentityX as a separate application for their clients’ phones, this can be rebranded to be an Acme Bank application. There is a note that this is solution is Powered by IdentityX, but otherwise you can provide corporate names and logos.

How can I use IdentityX to protect my clients?

IdentityX can be leveraged for any situation that requires authentication of the client. Whether performing online financial transactions, accessing personal medical data, gaining entry to corporate facilities, or confirming their identity with your help desk to recover a lost password, IdentityX brings your business the peace of mind of knowing that the client is who they claim to be.

Who hosts IdentityX data?

IdentityX supports both a hosted model, in which we maintain the authentication information on our own hosted servers, or an unhosted model, in which the Service Provider maintains the information on your own servers.

IdentityX can be hosted on your servers so that you have complete confidence in the integrity of the identity data. There is a clear benefit to being able to tell your clients that your company, with whom your clients have already placed their trust, will continue to safeguard their account.

How does my business benefit from using IdentityX?

Companies can leverage IdentityX to empower both their business and their customers. Some of the concrete benefits include:

Can we embed IdentityX into our own application?

Yes, in addition to simply rebranding the IdentityX application, it is anticipated that many Service Providers will want to embed the IdentityX authentication entirely into their own application which provides other Service Provider-specific functions. To support this, IdentityX was designed to use a framework that can easily be plugged into third party applications.

Can I use IdentityX for my employees?

Yes, IdentityX can be used for many internal, corporate purposes, from physical access to your facility to logical access to restricted internal systems. High risk financial transactions, management approval processes, protection of private client information – all of this can be conveniently and securely protected using IdentityX.

What are Daon's qualifications in the identity assurance market?

Daon is a leading provider of award-winning biometric identity assurance software products and services focused on meeting the needs of governments and commercial organizations worldwide. Daon supports customers and system integrators in building enterprise solutions requiring the highest level of security, performance, scalability, reliability, and privacy.

B2B FAQs

Developers FAQs

How do our applications integrate with IdentityX?

The IdentityX Server exposes interface points through the IdentityX Service Provider Gateway to sponsor customers, generate authentication requests, and to determine the results of authentication requests. These open standards-based SOAP web services are documented in the IdentityX Service Provider Gateway Interface Guide available through the "for developers" download section.

Is data being transmitted securely?

Yes. All data is transmitted to the server over Mutual Secure Sockets Layer (SSL). In addition, IdentityX offers mutual authentication (two-way authentication) so that the mobile device or service provider application authenticates itself against the server and the server authenticates itself to the mobile devices and service provider application(s).

What do I need to get started?

Documentation on integrating with the IdentityX Service Provider Gateway and embedding the IdentityX Mobile Device Frameworks is available in the "for developers" download section. Please contact sales@daon.com for more information on these products.

How can we call IdentityX from our mobile applications?

IdentityX Mobile Device Frameworks, available for the RIM (Blackberry), iPhone, and Android, handle secure communication between the customer’s mobile device and the IdentityX Device Gateway. Each IdentityX Mobile Device Framework enables sponsorship, enrollment, biometric quality checking, transaction retrieval, and transaction verification. Information on the IdentityX Mobile Device Frameworks is available in the "for developers" download section.

Buzz