RFL DigitaID™ Authentication and Transaction Protection Solution

RFL DigitaID™ Deployment Diagram

RFL DigitaID™ solution is based on two factors i.e., something you know and something you have. This solution provides a way to login to protected servers securely and prevent fraudulent transactions with real-time alerts if there are any misuses with the help of RFL Token Hardware. RFL Token hardware actively participates in both authentication and transaction processes, without end users knowledge authentication and transaction does not happen. This solution gives more control and accurate data for end users to take decisions based on the situation.

Communication between RFL Token, RFL Authentication manager and RFL Transaction manager happens in a separate tunnel which is private to the specific user, which in turn prevents many types of attacks using our patent pending algorithm.

RFL DigitaID™ Solution is capable in preventing both identity theft and transaction fraud with the help of RFL Token hardware.

RFL DigitaID™ solution consists of

• RFL Authentication Manager
• RFL Transaction Manager
• RFL Agent
• RFL Token
• RFL Integration Toolkit
• RFL administrator Console

RFL Authentication Manager

The authentication manager is a software component of RFL DigitaID™ solution. It is used for verifying the authentication requests and centrally administers authentication policies across the enterprise.

An additional responsibility of this component is to make sure the user has plugged in the RFL Token hardware and is aware of the authentication. Without end user permissions the authentication cannot take place.

RFL Agents communicates each of the authentication requests with this component before allowing end user to access protected resources.  Extensive real-time reports or offline reports about authentications requests are available for IT Admins

RFL Transaction Manager

Transaction manager component of RFL DigitaID™ solution is a software component used to verify all transaction requests and centrally administer the transaction policies.

RFL Agents communicates each of the transaction requests with this component before allowing the end user to perform any transactions. This manager will make sure that it verifies RFL Token is attached to the end user system and the end user is aware of this transaction; if there are any fraudulent transactions by the client PC, then this system detects it instantly and alerts both the banks and the end user in real-time and prevents fraud.

RFL Agent

RFL Agent is a plugin which loads along with a specific server application. This agent can run on multiple server application and communicates with the RFL Authentication Manager or the RFL Transaction Manager. If the Server application is dealing with only authentication then it communicates with RFL authentication Manager and if the server application is dealing only with transaction, then it communicates with the RFL Transaction Manager. Communication between RFL agent and Managers happen only in secure channel mode. RFL Agent allows server applications to communicate with the client system, only if RFL Authentication Manager or RFL Transaction Manager approves the request, otherwise it rejects the user request.

RFL Token

RFL Token is a USB based hardware which plugs directly into the USB port without the use of a reader and provides a highly secure, tamper-resistant and mobile container for user credentials. It communicates in a separate tunnel with RFL Authentication Manager or RFL Transaction Manager either for authentication or transaction and makes sure that no malware is able to intercept the communication at the clients PC. This token will be active from login until log-off from the server and actively participates in both authentication and transaction process. Without the end user knowledge this token does not allow authentication and transaction process to complete.

RFL Administration Console

Administration console manages complete life cycle of RFL Token. This is a web based interface which is deployed within an enterprise. This management console can be accessed either remotely or locally by the IT admin. Administrator console provides an easy interface to maintain the life cycle of tokens and does not require complex back-end installation and configuration, simplifying the process of initial deployment and ongoing token life cycle management. The high level features are as follows:

1. Initializing or reinitializing tokens
2. Assigning token to a user
3. Un-Assigning token of a user
4. Assigning privileges to a specific user
5. Blocking token
6. Blocking user
7. Modifying privilege of a user in a token

RFL Integration Toolkit

This is an API toolkit which helps in integrating with the various types of server and client applications. Server applications can be Core Banking application, Microsoft Exchange Server, IIS, etc... And client applications can be VPN client, etc...This toolkit provides an API for integrating both the standalone and the web based application.