Authentication solution IDport, based on the CASE authentication server. Add-on modules for federated identity based on federation protocols OAuth, Open ID Connect and SAML
The client's requirements
In order to develop its electronic services, the insurance company of Pojišťovna Kooperativa sought a consolidated solution of electronic identification and authentication that would provide a flexible platform to develop its online services, including those of other strategic partners (third parties). The key requirements were comprised of the following:
-
A modern means of strong authentication (in addition to smart card authentication, it should be compatible with mobile devices, such as smartphones and tablets).
-
A solution that could be utilized by employees and members of its partner network with remote access to electronic services.
-
Readiness for strategic partnerships on the basis of federated identity (partnerships with third parties).
The solution delivered
MONET+ implemented its IDport authentication system, relying on the CASE authentication server and extension modules, which support identity federation principles on the basis of OAuth, OpenID Connect, and SAML protocols. The solution provides ample opportunity for developing federated electronic services with third parties, where the insurance company acts as the (client) identity provider or service provider (for a third party’s clients).
In addition to central identification and authentication modules, MONET+ provided strong authentication methods in the form of PKI smart cards (a secure authentication method for central back-office employees) and mobile authentication apps (a strong authentication method for partner networks, brokers and other external professionals.
The benefits delivered
-
Introduction of a convenient two-factor authentication for the external network and the replacement of smart-card authentication for selected employees.
-
Our federated identity system enables the insurance company to securely create strategic partnerships with other organizations.
(Methods of Client Authentication) team