Strong, multi-factor authentication
myOneLogin protects application access with strong, multi-factor authentication using TriCipher's patented split-key authentication technology. Adding a flexible second-factor to the traditional password defeats most password attacks, as stealing a password is not enough to gain access.
This patented strong authentication is part of myOneLogin Secure Single Sign-On. It is also one of the on-demand services available to application developers as part of myOneLogin Identity Services.
What authentication technologies do you offer?
There is no single perfect authentication method, so we offer choices. myOneLogin supports the following authentication factors as part of the standard service:
- Encrypted browser cookies
- X.509 certificates
We also offer other authentication methods, including:
- One-time-passwords sent to mobile phones
- VIP Access for Mobile or other VeriSign VIP token
The underlying TriCipher Armored Credential System (TACS) offers step-up authentication, with multiple levels of authentication security, including tokens, keys on portable USB devices, smart cards, biometrics, one-time-passwords (via SMS or voice), KBA, OATH tokens, and 'out-of-band' methods.
For information about additional factors available for your myOneLogin solution,
contact support.
What if I'm roaming?
Browser cookies and certificates are stored on your computer. But don't worry – if you don't have your computer with you, we offer a variety of roaming authentication methods, including:
- Personal security questions
- Access codes sent to your mobile phone
- One-time passwords generated on your phone with VeriSign VIP Access for Mobile.
Learn more about
Split-key technology, sign up for a
developers account, or
contact us for more information.
Split-key technology
The TriCipher multi-part credential protects online identity while maintaining the familiar experience of entering a username and password.
One part of the TriCipher credential is generated on the user’s computer and the other portion is stored on the within the myOneLogin service.
myOneLogin stores your credential information in the TriCipher ID Vault, a government-rated security appliance that is part of the
TriCipher Armored Credential System.
Logging in requires both parts of the key. It is nearly impossible for an attacker to steal the entire credential to log into an account.
Learn more about the
TriCipher Armored Credential System, sign up for a
developers account, or
contact us for more information.
At the core of the myOneLogin service is the TriCipher Armored Credential System (TACS).
TACS provides more effective security than traditional PKI and is as easy to use as entering a username/password.
Proven, tested technology
TACS is widely deployed in the online banking, brokerage and health care industries – protecting millions of transactions each day. The underlying ID Vault technology has achieved the federal government FIPS 140-2 cryptographic rating.
In addition, the myOneLogin service has independent, third-party validation as using best practices for protecting customers from phishing and password theft.
"Step-up" authentication
TACS supports a flexible array of authentication technologies and credentials, ranging from simple browser certificates or cookies to smart cards, tokens and biometrics. All work within the unified authentication system, so you can easily add new layers of authentication security to your specific deployment.
Sign up for a
developers account or
contact us for more information.
.
