Artboard 1myriad__tick
Menu
Back to home

Out of Band, Two Factor Authentication

Myriad Connect’s market-leading out of band, two factor authentication (2FA) service delivers an isolated, third party authentication channel on any mobile device.

Out of Band Authentication

Myriad Connect’s authentication service delivers an isolated, third party authentication channel on any mobile device, using Unstructured Supplementary Service Data (USSD). Myriad Connect’s service delivers a real-time check to verify the identity of the customer.

Using USSD authentication, no persistent data is held with any third party, providing a more secure service than current two factor authentication services. A clear audit trail is also established, where the user’s identity is verified by a party external to the transaction.

This results in a technology that will greatly enhance the security of transactions vulnerable to fraud.

How Out of Band Authentication works?

A Bank wishes to authenticate an individual attempting to add a new payee to an account

user attempts to add a new payee to a bank account
A user attempts to add a new payee to a bank account, online or via mobile app.
Bank sends an advanced push notification
To confirm the veracity of the request, the Bank sends an advanced push notification, as two factor authentication (2FA) to the user’s mobile device asking him to confirm the action.
Single tap response from user is communicated back
Single tap response from user is communicated back, other pieces of information are retrieved on top of the answer.
Bank determines if a SIM swap has taken place
Bank determines if a SIM swap has likely taken place and therefore whether to proceed with the transaction or not.
The Bank can further validate the veracity of the transaction
The Bank can further validate the veracity of the transaction by sending a follow-up push notification asking the user a security question.

OBA: Second channel to authenticate a transaction

tick
Reduces risk of man in the middle attacks/phishing
tick
Ability to detect SIM swap
tick
More secure than one-time-password over SMS
tick
Ability to ask questions to further authenticate user in real-time
tick
No sensitive information stored anywhere
tick
Much more user-friendly
Features SMS OTP Module App USSD Push Myriad USSD Push
Content interception Easy Difficult Difficult Difficult
Data not persistent
Sim Swap secure N/A
Secure against ‘man in the middle’ attack
Mobile device compatibility
No data connectivity requirement
Global network reach
No data connectivity requirement

Myriad Connect’s service requires no compromise on security, providing the universal reach of SMS, with a level of security beyond that delivered by mobile apps. Myriad hereby provides organisations with an isolated, third party authentication channel on any mobile device providing world-class authorisation, access and authentication services.