GS Logo
The Green Sheet, Inc

Please Log in

A Thing
View Archives

View flipbook of this issue

Care to Share?

Table of Contents

Lead Story

The payments journey: From point of sale to points of commerce - Part 2

Dale S. Laszig


Industry Update

Wells Fargo probe exposes high merchant fees

NAC challenges FICO on ATM fraud

Harbortouch teams with Bar Rescue host on smart POS

Supreme Court likens surcharging to free speech


IoT changes retail dynamics


ISOs take note: The value of operational expertise is skyrocketing

Adam T. Hark
Preston Todd Advisors

The sobering state of cybercrime today

Brandes Elitch
CrossCheck Inc.


Street SmartsSM:
Should you register as an ISO?

Aaron Nasseh
Finical Inc.

The CFPB's active past, uncertain future

Brett Husak
National Bank Services

Semi-integrated solutions accelerate your EMV transition

Naga Jagadeesh

Navigating regulatory, financial MSB hurdles

Theodore F. Monroe
Attorney at Law

Company Profile

Super G Capital LLC

New Products

Enterprise-level CRM for payments industry

POS Portal Inc.

Secure, all-in-one developer's toolkit for mobile apps

DIGIPASS for Apps solution
VASCO Data Security International Inc.


Simple questions set the stage for results


Letter From the Editors

Readers Speak

Resource Guide


A Bigger Thing

The Green Sheet Online Edition

April 24, 2017  •  Issue 17:04:02

previous next

New Products

Secure, all-in-one developer's toolkit for mobile apps

Product: DIGIPASS for Apps solution

VASCO Data Security International Inc., a global technology company launched DIGIPASS for Apps (DP4A), a comprehensive software development kit (SDK) designed to optimize mobile app security and the customer experience. DP4A includes an application programming interface library to simplify integration, the company stated.


"As organizations move into the digital realm from brick-and-mortar environments, cybercriminals and hackers are targeting mobile applications, using multiple attack vectors to peel off personally identifiable information (PII)," said David Vergara, Head of Global Product Marketing at VASCO. "DP4A includes 16 specific capabilities designed to help the mobile channel continuously monitor mobile devices, authenticate users and mitigate risk."

Vergara said that within DP4A's three-pronged security strategy, monitoring and authentication are in the SDK library, enabling any developer to readily integrate the features into their own mobile apps. Risk management is accomplished by integrating DP4A with VASCO's Risk Platform.

Continuously monitor devices

DP4A continuously monitors mobile devices to detect anomalies and protect devices from numerous types of malware. Following are some examples VASCO provided:

Multifactor authentication

Vergara noted a common pain point for business owners and mobile app developers is balancing the need to drive growth and engagement with the need to provide secure authentication. "In the beginning we used hardware tokens, but we went on to develop more frictionless solutions for authentication," he said. "For example, we use behavioral authentication to understand how users behave with devices and online, through the amount of pressure they use in their keystrokes, how they hold a phone, and dozens of other data points. This real-time, artificial intelligence can detect anomalous behaviors based on a user's behavioral model."

Fingerprint identification, facial identification that measures "selfies" against stored templates, and risk-based authentication that uses available data points to score the risk profile of a transaction are other examples of DP4A's dynamic multifactor authentication schemes.

Risk platform intelligence

VASCO's risk platform, the third essential component of DP4A's three-pronged security strategy, uses advanced analytics to determine the risk level of an individual mobile device. The company's IDENTIKEY Risk Manager integrates with DP4A to holistically interpret data and the health and integrity of a user's mobile apps.

The risk platform can leverage geolocation and communications technology to determine a device's physical location, whether its communications channels are open or secured, and if a user's mobile device has been jailbroken or rooted. It will use this data to calculate a risk score, based on the device's propensity for fraud.

Secure, enjoyable mobile experience

"Development teams are pressured in two ways: they're tasked with creating the best possible experience to attract and retain customers, while providing added security," Vergara said. "Developers tend to spend much more time on experience, either because they don't have the time or ability to address security, or because customer acquisition is a top priority.

When you think of the sheer volume and uniqueness of malware created every day, it can be staggering, he added. "We take that tradeoff and balancing act away with DP4A by removing friction and providing an incredible user experience," he said. "We can also intelligently manage the level of security and ramp it up as needed without impacting the user experience in many cases."

Website: Contact:

Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.

previous next

Spotlight Innovators:

North American Bancard | USAePay | Board Studios