close

About BankID

With BankID, your enterprise can identify 3.6 million Norwegians digitally. That means you can carry out secure transactions, establish and maintain good customer relations and enter into and sign binding agreements. Not only does BankID make things easier for your enterprise and your customers – it enables brand new business opportunities.

Could it be made easier for your clients? Will it still be safe and secure? BankID is used by a number of industries, with different challenges in different markets. The common denominator is the need for digitalisation, simplification and efficiency.

With BankID, your enterprise can identify customers in a simple and secure manner, and let them sign or enter into agreements. This leads to both great opportunities and savings.

The information is gathered from https://www.bankid.no/en/company/, accessed 2017-05-09.

About BankID on mobile

Norwegian BankID on your mobile provides the same possibilities as BankID does. The difference is that you don’t need the code device when using BankID on your mobile, as is required for BankID. All you need to get up and running with BankID on your mobile is a phone and a plan from a carrier who supports the service. See BankID for more info.

About ID-porten

ID-porten is a common log in solution to public services. With ID-porten you can log in to more than 1000 different services from government agencies.

In order to use digital services from Norwegian public agencies, you must have an electronic ID (e-ID). You can choose between five different electronic IDs: MinID, BankID, BankID on mobile, Buypass or Commfides.

An electronic ID confirms that you are who you say you are when logging into digital services. ID-porten is operated by the Agency for Public Management and eGovernment (Difi).

The information is gathered from http://eid.difi.no/en/id-porten, accessed 2017-05-09.

About Buypass

Buypass ID is a personal electronic ID, which can be used for secure electronic identification, signature and payment. Buypass ID can be stored on a Buypass smart card or on a mobile phone. Buypass personal ID can be used both for private services at Buypass user locations, and as a personal ID in a business solution.

In the latter solution you can combine both local certificates (issued by the company itself), to serve the internal needs of the local logon etc, and qualified certificates (issued by Buypass) on a single smart card. With Buypass ID you can log on websites, sign contracts electronically and pay in a simple and user-friendly way with a method that fulfills the market’s highest level of security requirements.

About MinID

MinID is an electronic login system used to secure a range of internet services in the Norwegian public sector. The communication done with MinID is encrypted to secure information from unauthorized usage.

The purpose of MinID is to communicate an electronic identity, so that users are authorized to use electronic services, in a secure way. MinID has a user database where social security numbers and PIN-codes are saved.

MinID can be used to access more than 50 online services from various Norwegian public agencies, including the Norwegian Labour and Welfare Administration, the Directorate of Taxes and the State Education Loan

MinID provides access to public services at a medium-high level of security (level 3). To register yourself as a MinID user you need a national identity number or D number, a mobile phone or e-mail address and a PIN code letter

http://eid.difi.no/en/id-porten, accessed 2017-05-09

https://en.wikipedia.org/wiki/MinID, accessed 2017-05-09

About Commfides

Commfides e-ID is a Norwegian electronic identity solution for persons and organizations that meets all the official requirements that apply for secure electronic identification as well as for electronic signature. The electronic ID can be used for electronic authentication, signing and encryption by private individuals, businesses, employees as well as automated processes.

About DNIe

Documento Nacional de Identidad electrónico (DNIe) is the Spanish eID. It is in line with the EU directive on electronic ID, and it is a “smart” identity card with a chip containing certificates for authentication and digital signature, similar to Estonian ID-kaart, Belgian .beid and many others. The cards are issued to Spanish citizens and can of course be used for regular “real world” authentication, but in order to use it electronically the subject must physically go to a passport issuing police station where he/she can activate the chip on the card using a self service kiosk, “Punto de actualicaćion del DNIe”.

The end user portal for information on DNIe is located at http://usatudni.es/dnie/. The site contains information regarding what DNIe is, how to use it and where you can use it. There is no central support organization where you can ask for help with your DNIe. When assisting end users with their DNIe problems, please refer to http://zonatic.usatudni.es/aplicaciones/asistente-dnie.html which provides software downloads and also a client executable which can be downloaded and used to verify the certificates of a DNIe card.

About EstEID

Estonian ID Card (EstEID) is a personal electronic ID, which can be used for secure electronic identification and signature. Estonian ID Card as one of the accepted and major standards for providing eID to the users in Estonia are now integrated into the Signicat ecosystem and further expands the current support for more than 60 millions identities. We support multiple languages to cover the majority of the users, and currently supported languages are Estonian, Finnish and English.

Not only do we support ID-Kaart, but also Mobiil-ID for full coverage of devices available for Estonian ID. Mobiil-ID becomes more and more important and goes in hand with mobile first trends. Signicat is the first cross-border identity hub to support EstEID. As the leading ID hub in Europe we enable both existing and new customers with cross-border identity solutions. Easy integration and fast time to market give the customer the advantage of integrating once and reuse the same interfaces.

About NemID

NemID is a collaboration between the Danish banks and the Danish public sector. This alliance forms a country wide solution and is set to be the new, secure login mechanism for internet sites wanting to utilize the free of charge digital ID for all citizens in Denmark. This will ensure a unified platform for both citizens and enterprises in Denmark. Signicat will continue to support the two older Danish ID solutions, Net-ID and Digital Signature (OCES) for as long as these remains active.

About Swedish BankID

BankID is the leading electronic identification in Sweden. BankID has been developed by a number of large banks for use by members of the public, authorities and companies. The first BankID was issued in 2003. The BankID network includes Danske Bank, ICA Banken, Ikano Bank, Länsförsäkringar Bank, Nordea, SEB, Skandiabanken, Sparbanken Syd, Svenska Handelsbanken, Swedbank and Ålandsbanken. 7,5 million people use BankID on a regular basis for a wide variety of private and public services.

BankID have 7,5 million active users. Many services are provided where citizens can use their BankID for digital identification as well as signing transactions and documents. The services vary from online and mobile banking, e-trade to tax declaration and are provided by government, municipality, banks and companies. BankID is used both for identification as well as signing. According to Swedish law, and within the European Union, BankID is an advanced signature and a signature made with a BankID is legally binding.

The customer’s identification is guaranteed by the bank issuing the BankID. Authorities, companies and other organizations must check the validity of the customer’s identity and signature. BankID is available on smart card, soft certificate as well as mobile phones, iPads and other tablet devices.

The information is gathered from https://www.bankid.com/en/om-bankid/detta-ar-bankid, accessed 2017-05-09.

About Danish digital signatures (OCES)

OCES – Offentlige Certifikater til Elektroniske Services (Public Certificates for Electronic Services) is an establishment of digital signatures. A digital signature is based on PKI (Public Key Infrastructure). This is an infrastructure which enables authentication and confidentiality in electronic communication between two parties.

OCES is primarily used in communication between private enterprises and public authorities in Denmark. The digital signatures are partly free of charge for the private enterprises, but with a transaction-fee to DanID, from the merchants, who benefits from using the infrastructure.

About Telia e-legitimation

Telia e-legitimation Privat

Telia e-Legitimation Privat contains personal information for private persons, and may be used for secure electronic identification and signing documents on the Internet. The Telia e-Legitimation may be stored on the end-users computer or on an electronic identity card from Telia. Together with a personal security code the end-user can identify itself on the internet. Telia is issuing e-Legitimation for people from 18 years, with a Swedish social security number and who are registered in Sweden. Telia may also issue e-Legitimation to persons aged 13, if the eID is placed on the Skatteverkets card, and the person has a Swedish social security number, and can prove its identity.

Telia e-legitimation Förlitandetjönst

The Telia e-Legitimation Förlitandetjönst service is addressed to governments, businesses and organizations that wish to use or rely on eIDs already issued. The service offers the opportunity to protect information in an e-service so that it only becomes accessible after a user legitimated itself. The user uses an e-service from a Relying Party to identify themselves or sign a transaction with its e-Legitimation. Relying Party identifies itself against Telia Förlitandetjönst, which controls the eID against Telia’s database and sends a response if it is authentic or blocked.

About Tupas

Finnish banks Tupas security service allows businesses and organizations providing Internet services to authenticate their customers with Tupas certificates issued by the Tupas service. In the Tupas service a bank authenticates a customer by a strong authentication method. The Tupas certificates issued by the service can also be used for signing documents electronically if so agreed by the customer and the service provider. This service is called the Tupas Banks-certification service. Tupas is not a qualified PKI-based authentication. The Tupas service is jointly defined by Finnish banks. Each bank authenticates its customers with the same bank-specific identifiers that the customer uses in the bank’s own services. The following Banks are members of the Tupas-cooperation: Handelsbanken, Nordea, OP Bank Group, Danske Bank, Aktia, Saving Banks, POP Bank, Bank of Aaland, S-bank and OmaSP.

About FINeID

FINeID (Finnish electronic Identity) refers to electronic identification of individuals using digital certificates — these are issued by the Population Register Centre in Finland.

Together with the local register offices, the Population Register Centre is the data controller for the Finnish Population Information System. The PRC maintains and develops the Population Information System, its data and data quality as well as certified electronic services. The PRC offers Population Information System information services and certificate services, and performs duties related to elections.

When it comes to FINeID, The PRC provides certificates for citizens, organisations and the health care sector. The citizen certificate on the ID card issued by the police is the best-known certificate provided, but other certificate products produced by the PRC include special smart cards, server and e-mail certificates for organisations and for the health care sector. They also issue biometric signature certificates for travel documents, such as passports.

http://vrk.fi/en/certificates-fineid, accessed 2017-05-09

About Mobiilivarmenne

Mobiilivarmenne is a mobile implementation, which uses SIM-Toolkit technology. Unlike the regular Tupas banks in Finland, Mobiilivarmenne utilizes roaming info. So if you are a customer of one of the mobile providers, you can log in to all of them. The following mobile providers supply Mobiilivarmenne:

  • Elisa
  • DNA
  • TeliaSonera

About iDIN

iDIN is an identity scheme which allows users to log in to other web applications, using their bank credentials. All Dutch users which has a bank account will be able to use iDIN. The main reason for using iDIN is to reduce the number of usernames and passwords the user has to remember. This will reduce the need for customer support as well as ensuring that the user can go on with the business.

By using iDIN the user will be reusing their existing bank credentials, for logging in at multiple web applications. iDIN offers an identity which is verified by the bank that this is a real user, and thereby can be trusted. This also includes information like the gender, age and address of the user. In some cases the telephone number and e-mail address are also available.

About DigiD

DigiD is an identity management platform which government agencies of the Netherlands, including the Tax and Customs Administrations and Dienst Uitovering Onderwijs, can use to verify the identity of Dutch residents on the Internet. In 2015 it was used for 200 million authentications by 12 million citizens. The main reason for using DigiD is to reduce the number of usernames and passwords the user has to remember. This will reduce the need for customer support as well as ensuring that the user can go on with the business. By using DigiD the user will be reusing their existing bank credentials, for logging in at multiple web applications. DigiD offers an identity, which is verified towards the person register. This means that this is a real user and thereby can be trusted.

About iDEAL

iDEAL is an e-commerce payment system used in the Netherlands, based on online banking. Introduced in 2005, this payment method allows customers to buy on the Internet using direct online transfers from their bank account.

IDEAL is owned by the Dutch organization Currence and remains by far the most popular method for online payments in the Netherlands, well beyond credit card use. As of April 2016, the total amount of payments exceeded one billion. All major Dutch banks are part of the iDEAL scheme.

About Neue Personalausweis (nPA)

The New German National Identity Card is among the world’s most advanced identification documents. It allows you to perform business and government transactions easily and safely online. The card has a Smartcard format with an integrated chips holding different personal information. Among this information is the passport photograph and possible the card holders fingerprints. The card can be used to electronically sign binding contracts, applications and documents.

http://www.personalausweisportal.de/EN/Home/home_node.html, accessed 2017-05-09

About Signicat Paper

The Signicat Paper solution is a component of the Signicat Assure product. Its primary purpose is to obtain photographs of identity papers provided by end users. Signicat Paper then proceeds to analyze the identity papers and extract the end user’s identity details from it. These details are passed on to the service provider.

Signicat Paper provides vital security features in order to ensure identity paper authenticity. Each identity paper is checked towards an internal repository of known identity papers and their printed security features. These features and information such as the expiry date on the identity paper are validated before the end user is allowed to proceed. In addition, Signicat Paper can be extended to collect self portraits from the end user, which are then matched towards the photo on the identity paper for further authenticity assurance and proof of ownership.

About Video Assurance

During a consumer onboarding process it may be required to do a face-to-face meeting. According to Merrian-Webster, the definition of face-to-face is “within each other’s sight or presence”. Depending on risk and regulatory requirements, a two-way video conference may be within the definition of a face-to-face meeting.

This assurance method will typically be the last of a series of assurance methods. It is typically preceded by the consumer uploading a picture of an ID paper, a picture of him or herself, and maybe also the use of other electronic IDs, such as eIDs or consumer identities. The video assurance is done by a call center operator performing a scripted interview with the consumer, which may or may not include the user showing the ID paper.

About MyBank

MyBank is an e-authorisation solution which enables safe digital payments and identity authentication through a consumer’s own online banking portal or mobile application. Banking security is at the core of MyBank. MyBank creates a direct link between a customer’s online bank account and the online business’s bank which eliminates the need to collect and store personal data. Customer identity and confidential data are protected. Immediate authorisation of payments reduces risk of fraud and charge-backs. With MyBank, trust and confidence in online transactions is increased.

The information is gathered from https://www.mybank.eu/mybank/what-is-mybank/, accessed 2017-05-09.

About MobileID

The Signicat MobileID SDK provides merchants with an API to implement strong customer authentication (SCA) in their mobile applications and use two-factor authentication. When the application is configured, the user will only have to provide a PIN or a fingerprint on the mobile device to log in. No password is needed as well as the end-user will not have to leave the application for authentication. This can for example be used for logging in to an application or adding a digital signature to a document.

About SMS OTP

Signicat’s SMS OTP is a simple identification method based upon one-time passwords on the SMS channel. A typical scenario may be this:

  • A user accesses a service on a merchant that requires some sort of identification
  • A merchant sends an SMS with an OTP code to the user
  • The user types in the recently received code in the merchant’s application
  • The merchant receives the user’s telephone number in the response from Signicat

Although this method alone does not provide adequate security, there is nothing technically that prevents using SMS OTP as a standalone authentication method. However, the most normal and recommended use, is to boost up an existing login process. SMS OTP integrated with any username/password login solution will form a 2-factor authentication method.

About Mail OTP

Signicat’s Mail OTP is a simple identification method based upon one-time passwords on the mail channel. A typical scenario may be this:

  • A user accesses a service on a merchant that requires some sort of identification
  • A merchant sends an email with an OTP code to the user
  • The user types in the recently received code in the merchant’s application
  • The merchant receives the user’s email in the response from Signicat

Although this method alone does not provide adequate security, there is nothing technically that prevents using Mail OTP as a standalone authentication method. However, the most normal and recommended use, is to boost up an existing login process. Mail OTP integrated with any username/password login solution will form a 2-factor authentication method.

About InkSign

There are several scenarios where the established, national PKI infrastructures add unnecessary or unneeded requirements for a given purpose. InkSign, that is a part of the Signflow, enables you to utilize electronic signatures without the need for any external, single-purpose peripherals such as code calculators or code cards. InkSign captures the essence of real world ink signatures by collecting information and data about the user’s name in addition to a hand-written signature.

InkSign fits perfectly into the web as well as any in-store scenario where the customer previously would sign a bunch of papers which would then need to be collected and manually processed.All of this information is packed into an informative PDF result, containing both the signers name and signature as well as the original document. This result – the SDO (Signed Document Object) – is digitally signed to prevent any form of tampering after the signature has been applied. The SDO will contain all relevant data in human as well as machine readable form and can be used to instantly get signed agreements into any document or customer management system.

About Password

Signicat Password is a simple, user administrated identity solution for login with username/password. Signicat Password fits very well into any scenario where you already have a customer database, employee directory or any other list of potential users that should have access to a web application. Signicat Password also makes a good supplementary solution when most, but not all, of your user base can use a strong eID solution

Signicat Password handles distribution of first-time passwords for new users, recovery codes when users have forgotten their password and password change. You only have to provide the list of users. Registration codes and recovery codes can be distributed by SMS, post or email. Signicat Password allows for login with both static passwords created by the user or one-time passwords distributed by SMS or email. Login with Signicat Password is integrated with Signicat ID. The username/password solution will be available as one of the accessible eID solutions along with the solutions for strong authentication.

About LinkedIn

LinkedIn is a social network service that is primarily used for business purposes an professional networking. At LinkedIn employers are posting jobs as well as job seekers can post their CVs. The users can build their own profiles and connect to other users, resulting in a network which may represent real-world professional relationships. Members can invite anyone to join and of April 2017, LinkedIn had 500 million members in 200 different countries.

All users with a LinkedIn profile can use LinkedIn to sign in to other sites as well. This reduces the end users need to remember a new account per site as well as the developers time and costs regarding login sites, profile management and password change. In addition will the sites and apps be up-to-date with the end users profile data.

The information is gathered from https://en.wikipedia.org/wiki/LinkedIn and https://developer.linkedin.com/docs/signin-with-linkedin#, accessed 2017-05-10.

About Facebook

Facebook in an online social media and social network service where users can, among other things, register, create a profile, connect and communicate with others.

All users with a Facebook profile can use Facebook to sign in to other sites with their Facebook credentials.

The information is gathered from https://developers.facebook.com/docs/facebook-login/web, accessed 2017-05-10

About Amazon

Amazon is an electronic commerce and cloud computing company. The company, which started as an online bookstore, is now the largest Internet-based retailer in the world by total sales and marked capitalization.

Amazon is an electronic commerce and cloud computing company. The company, which started as an online bookstore, is now the largest Internet-based retailer in the world by total sales and marked capitalization.

All users with a Amazon profile can use Amazon to sign in to other sites with their Amazon credentials. Signing up and logging in with already known credentials reduces registration friction for the end-users. It will in addition, among other things, leverage security and scalability as well as reduce infrastructure and operational costs for developers of other sites.

The information is gathered from https://en.wikipedia.org/wiki/Amazon.com and http://login.amazon.com/, accessed 2017-05-10.

About PayPal

PayPal is an American company operating a worldwide online payments system, supporting online money transfers. It serves as an electronic alternative to traditional paper methods, like checks and money orders.

All users with a PayPal profile can use PayPal to sign in to other sites quickly and securely with their PayPal credentials. Signing up and logging in with already known credentials provides the end-users simplicity as there will only be one user identity to remember for logging in as well as less forms to fill out. In addition will PayPal always secure the end-users financial information and provide the end-user with seamless checkout without logging in to PayPal again (available from 15 minutes to one hour from end-user log in to your website).

The information is gathered from https://en.wikipedia.org/wiki/PayPal and https://developer.paypal.com/docs/integration/direct/identity/log-in-with-paypal/ accessed 2017-05-10.

  • Public eID schemes
  • Consumer identities
  • Other methods