TRAVIC Sign: Full protection against phishing and Trojans
Internet banking services call for secure data transmission to ensure customer acceptance. Risks like phishing, man-in-the-middle attacks and especially Trojans require reliable security technology. The integration of the solutions into the operator’s IT must be as simple as possible.
TRAVIC Sign is a standard solution for secure customer authentication using a digital signature stored on either a smart card or a USB stick. TRAVIC Sign ensures that the customer is really communicating with the bank server and vice versa. The product supports FinTS and EBICS signatures.
TRAVIC-Sign supports the Trojan-proof Secoder I/II ZKA standard. When operated in the Secoder standard, important order values are displayed in the card reader's display. This is where the customer performs his signature and sends it back. By means of this confirmation, the bank server can check the order values and verify the order's authenticity. Trojans thus don't have the possibility to manipulate orders.
In combination with a card reader in the format of a KOBIL USB stick, TRAVIC Sign forms a complete mobile solution for digital signatures with smart cards. The USB stick contains a fully preconfigured browser, including all the necessary drivers, which connects with the bank’s website. The system environment is encapsulated and inaccessible from the outside, protecting the solution from man-in-the-middle attacks.
TRAVIC Sign can be quickly and easily integrated into every HTML server application as an additional security procedure. After a few additional lines of code have been transmitted to the bank server, the customer's log-in and transactions can be authenticated by smart card. This makes it easy to set up multibank-capable corporate customer portals. TRAVIC Sign works with all Internet browsers in common use, also under MAC-OS, and automatically recognises connected card readers.