Multi-Factor Authentication Suite

Lightweight, Scalable, Multi-Channel, Multi-Factor Authentication Solution

Today organizations are struggling with increase online identity frauds and this has shunned customers into performing transactions online. Together with government's regulatory combined with innovative identity attacks such as phishing, man-in-the-middle(MITM),man-in-the-browser (MITB) and other malware, organizations are facing pressure to improve its security and customer's privacy while not sacrificing the convenience of their customers. Basic identity credential such as Login ID and Password is no longer sufficient to protect their customer's privacy and security and needs to deploy advanced identity and strong authentication solution to ensure only authorized users gain access to their system.

UPASS Multi-Factor Authentication Suite is designed to minimize identity frauds and supports for high performance environment and it is also one of the design criteria to be lightweight and easily implemented in short time and cost effectively. The solution is scalable and can be deployed in High-Availability Environment already in use in operating platform like IBM AIX, Oracle Solaris, Red Hat Linux, or Microsoft Windows operating platform and hardware security components like HSM from Thales, or even security tokens firm like Gemalto, OneSpan (formerly Vasco). UPASS complies to financial regulatory guidelines from numerous countries both in Malaysia and ASEAN countries.


Fido Certified Solution


UPASS FIDO-certified Server, is the first and only Malaysian-made MFA solution certified by FIDO Alliance. The certification was completed in June 2019 and we are very proud to extend a simpler, stronger authentication solution to all our existing and future potential customers.

Available Authentication Methods

UPASS Mobile Token: The revolution security tokens.

  1. DYNAMIC AUTHENTICATION IMAGE BASED ON USER ID AND TIME - The UPASS Mobile Token will generate Dynamic Authentication Image based on User ID and Time. This dynamic image generator is an enhancement to the old static image verification method.
  2. STATIC IMAGE VERIFICATION METHOD - We also offer separate Security Tokens solutions for your 2-Factor Authentication.
  3. ONE-TIME PASSWORD - The One-Time Password is used to provide additional challenge to the user if UPASS detects suspicious log-ins. This is to further strengthen the authentication to protect the users.
  4. TRANSACTION DATA SIGNING - An authenticate method for transaction data authenticity with a challenge issued by enterprise server with response generated by Mobile Token.
  5. ADAPTIVE AUTHENTICATION - The implementation of appropriate level of risk-mitigating assurance for resources access by requiring users to further demonstrate that they are who they say they are. This is known as "step-up" authentication. It is a process of gathering users, devices and their location attributes and evaluate in the context of risk-based policies.

UPASS Key Benefits

- Lightweight & Easy to Deploy.
- Users can use same ID & Password & OTP to access multiple applications.
- Secured End-to-End Connection.
- Scalable and High-Availability enabled.
- Comprehensive audit logs.
- Centralized administration via GUI with Role Based Access Control.
- Supports multiple delivery channels (SMS, Email & Postal Mail via PIN Mailer).
- Able to supports different OTP tokens provider.
- Support multiple applications authentication in a single installation.
- Complies to Bank Negara Malaysia & Monetary Authority of Singapore security guidelines.


Contact us and find out how our OnlineApps Digital Banking Solution can digitize your business in the shortest time with low investment. We look forward to hear from you.

Made with Mobirise free creator