ThinC_AUTH

Secure and simpler authentication

A next-generation of ubiquitous, phishing-resistant, strong authentication to protect the digital identity of internet users worldwide.

"Microsoft has been a preeminent advocate of FIDO Alliance's mission to move the world beyond passwords."

Andrew Shikiar

CMO of the FIDO Alliance

Ensurity in Elite Group

Ensurity Technologies, with its FIDO2 certified Biometric Security Key "ThinC-AUTH" for passwordless multi-factor authentication, has been inducted into MISA (Microsoft Intelligent Security Association), which consists an elite group of cybersecurity technology companies partnering with Microsoft in building advanced solutions for evolving threats.

MISA comprises of select companies that provide innovative and advanced security technologies. MISA included products for: Azure Active Directory, Azure Information Protection, Windows Defender ATP, Microsoft Intune, Microsoft Graph Security API, Microsoft Cloud App Security, as well as other Microsoft related technologies.

About MISA Ensurity in MISA

WHY BIOMETRIC-BASED FIDO2 SECURITY KEYS ARE PREFERABLE PASSWORDLESS LOGIN SOLUTION TO A NON-BIOMETRIC KEY?

Ensurity's ThinC-AUTH is a privacy & security enabler and is ultra-secure hardware-based Security Key for online identity & authentication with onboard 360° Fingerprint touch sensor.

FEATURES

Features

Configurable Security Key

With a biometric touch-to-authenticate, the multi protocol ThinC-AUTH protects access to computers, online services, and networks.

Fingerprint authentication

Strong biometric technology makes ThinC-AUTH Security Key one of the most secure hardware tokens. The biometric module prevents any misuses of the Key from unauthorized Users other than the valid user. No security risk in case of losing the Key.

Strong Security Architecture

The core functionalities of the embedded security chip of ThinC-AUTH is to encrypt, store and validate your fingerprint templates. Once enrolled, it is impossible for someone to reverse engineer your fingerprint data from the protected storage.

Strong Algorithms

AES, HMAC, ECDH achieves high-level security to User and Key.

Single Key for hundreds of services

Passwordless authentication to Windows 10 systems (connected to Azure AD); multiple PC platforms; and multiple FIDO2 enabled web applications.

Bespoke Design

We offer customization options for casing-colors, engraving, and packaging.

SPECIFICATIONS

SPECIFICATIONS

ThinC-AUTH Biometric Security Key

  • Security Algorithm
    ECDSA, SHA256, AES, HMAC, ECDH
  • Interface
    USB-A
  • Communication Protocol
    CTAPHID
  • Working Voltage
    5.0V
  • Working Current
    Standby: 80mA
  • Power
    Standby: 0.4W
  • Working Temperature
    (-10°C to 45°C)
  • Storage Temperature
    (-20°C to 70°C)
  • LED Lights
    2 multi-color LEDs
  • Casing Material
    Metal+ABS

Fingerprint Module in ThinC-AUTH

  • Image Pixel
    160 x 160 pixels with 8-bit depth
  • DPI
    508 DPI
  • Fingerprint Sensor
    Capacitive 360° Touch Fingerprint Sensor with Ultra-low power consumption
  • Sensor Protection
    Integrated conductive bezel
  • Sensor Quality
    Superior 3D image quality
  • Server Service Life
    More than 200k times
  • Storage
    5 fingerprint templates
  • False Accept Rate
    <0.001%
  • False Reject Rate
    <1%
  • Recognition Time
    <0.6s (for 120 finger points)
  • Acquisition Time
    <180ms
  • ESD range
    IEC61000-4-2, level X, air discharge (±30 kV)

In a traditional authentication, the user types in his credentials on the device/browser then the browser sends those credentials to the server for user verification. However, that’s not the case for passwordless authentication where no password is sent over the internet.
Only the assertion generated by the authenticator is sent to the Relying Party (server) and the authentication is done on the authenticator level using the biometrics on the ThinC-AUTH Security Key. From a security perspective, the user credentials can’t be technically leaked or brute-forced since there’s no password to compromise. For biometrics, only the templates are registered, which are encrypted and stored within the Security Key and will not be accessible for external usage. This user-friendly process drastically reduces the risks associated with human error in cybersecurity.

Inadequacy of passwords

How many times are you unable to use digital applications because you’ve forgotten your password? From dozens of passwords for everything from social media sites to shopping, company, and productivity-related platforms like Github, a large part of our day is spent dealing with passwords.
Recent research delving into passwords found that an alarming 78% of respondents use an insecure method to help remember their password, with 34% admitting to using the same password for multiple accounts.
Poor password hygiene presents a significant security risk for organizations. According to the 2019 Verizon Data Breach Investigations Report, 80% of hacking-related breaches involve compromised or weak credentials, while 29 per cent of all breaches involved the use of stolen credentials. The consequences of a breach can be catastrophic, with the average cost of a stolen record $148, and the total cost incurred from a data breach averaging at $3.86m - far from small numbers. Despite this, 65% of organizations do not even check employee credentials against common password lists.

FIDO2

Securing WWW with password-free authentication

Overcoming the reliance on passwords is not going to happen overnight, but with technological advancements, such as FIDO2, there is finally encouragement for a passwordless future.
FIDO2 is a phishing proof, passwordless authentication protocol developed as a joint effort between the FIDO Alliance and the World Wide Web Consortium (W3C) , and the main goal of this project was to create a strong authentication standard for the web. In March 2019, W3C announced that WebAuthn is now the official web standard for password-free login. At its core, FIDO2 consists of a mixture between the W3C WebAuthn standard and the FIDO Client to Authenticator Protocol (CTAP).

Speak to a security expert to find out how we can help you. Click here