On-Demand Password

What is Push Authentication?

Push Authentication, also known as Out of Band Authentication (OOBA), is one of the most secure and easy to use forms of two-factor authentication (2FA). When a user attempts to login to a service secured by push authentication 2FA, the service provider sends a login request notification to the user over a seperate communication channel. The user can respond to the notification by simply accepting or denying the login request. For additional security, the user can also be asked to enter their PIN or scan their fingerprint in order to accept the login request.

Push notifications can be sent over a number of communications channels, such as mobile push, sms push, call push. Currently, the most popular channel being used for push authentication is mobile push.

Pros of Push Authentication

Push Authentication is one of the most friendly user authentication methods. The user only has to tap allow or deny when they receive the push notification on their phone – much easier than typing in a one-time password (OTP).

Push Authentication is also one of the most secure user authentication methods. The network or channel used for user authentication is out of band – it is completely separated from the network or channel used for user login. Therefore, the possibility that both networks and channels are compromised by an intruder at the same time in a short period of time while a user is attempting to login is far less than that in a single band system.

Cons of Push Authentication

Push Authentication requires users to install an authentication app on their smartphones. Also, it requires internet connection on the user’s phone in the authentication process.

Out-of-Band Authentication (OOBA) is one of the most secure types of two-factor authentication, and Mobile Push is the easiest form of Out-of-Band Authentication. Mobile Push implements OOBA over mobile data networks. It is not only very secure, but also very easy to use – Authenticating with Mobile Push is as easy as pressing a button on your smartphone.

How it Works

Mobile Push requires users to install an authentication app, Deepnet MobileID, on their smartphones. When a user attempts to login to access a protected service, the DualShield server will push a login request to the user via the mobile data network. The Deepnet MobileID app on the user’s phone receives the login request and prompts user to accept or deny by simply pressing the button. Optionally, for extra security, the user might be asked to enter their PIN or password to approve the login request.

Supported Devices

Mobile Push is currently supported in MobileID app for iPhone and Android.

SMS Push is a form of Out-of-Band Authentication (OOBA) that is conducted by exchanging a pair of SMS messages between the service and users.

How it Works

When a user attempts to login to access a protected service, the DualShield server will push a login request to the user by sending a SMS text message to the user. The user receives the message and replies to accept the login request.

Call Push is a form of Out-of-Band Authentication (OOBA) that is conducted by a phone call between the service and users.

How it Works

When a user attempts to login to access a protected service, the DualShield server will automatically place a call to the user and tell the user that there is a login request waiting to be approved or rejected. The user can press a button or key in the a code as instructed to accept the request or hang up to decline it.