The HYPR device performs authentication via UAF and Biometric TOTP (See RFC 6238). Each HYPR device contains a TRNG-based secret that is used to generate a TOTP token. When a user swipes their finger and successfully authenticates their biometric signature on the device, the TOTP token generated is then encrypted and transmitted to the device requesting authentication – such as a user’s mobile device or desktop computer. The intermediary device then forwards the encrypted TOTP to a server where the signature and TOTP are verified. If the verification is successful, access is granted. Here’s a diagram of the biometric validation server.
What sort of authentication credentials are supported by the token?
HYPR Empowers ROI-Driven Security
HYPR provides enterprises an end-to-end solution for deploying decentralized biometric authentication securely across millions of users. Our FIDO-Certified software is integrated into employee and customer-facing applications to deliver secure password-less experiences across all mobile, desktop and IoT systems.
What’s the secret sauce? Request a demo to find out.