Skip to main content
Home
  • cs
  • en
  • Solutions
    • Client Authentication
      Easy-to-use, highly secure solutions for strong customer authentication in your digital channels and applications.
      Electronic Payments
      Sector-specific solutions for acquirers, service providers, payment facilitators, and payment providers.
      Enterprise ID
      Improve the security of your data and eliminate complex passwords in your organization with our PKI systems, smart cards, mobile authentication, qualified electronic signature or eSeal.
      eGovernment Identity
      Our PKI based solutions enable authenticated, secure handling of personal data and other applications of electronic identity in modern digital government.
      Mobile Identity Card
      Identification document in a Mobile Phone
      Smart Cities
      EMV card acceptance in public transport and parking. Faster check-in, improved convenience and valuable data on the functioning of your city.
  • Technology
    • Smart Cards
      Chip card applets, proprietary middleware and applications for highly secure identification, authentication and payment processing solutions.
      Secure Mobile ID
      Mobile devices and a variety of connected hardware for strong authentication. Securing the distributed environment of digital banking, identification or logical access scenarios.
      EMV Payments
      Software and hardware solutions for EMV payment card acceptance covering the whole process from your EFT terminal to the processing centre.
      Federated Identity
      Centralized identity security in the distributed environment of various mobile, web or cloud-based business applications.
      PKI
      We apply proven PKI cryptography and symmetrical algorithms, certificate management infrastructure and design a strong security policy, balancing security and business needs of our customers.
      Perso Lab
      One-stop shop for software personalization systems development and complex card issuing services including secure software personalization, flexible physical (graphical) card personalization and logistics.
  • Case studies
  • Company
    • About Us
    • Our Story
    • Contacts
  • Career
  1. Home
  2. Case studies

Central authentication system ČS MEP

Česká spořitelna
/ 2014-2018
Client Authentication
Smart Cards
Secure Mobile ID
Federated Identity

In cooperation with Deloitte (prior to 2016), MONET+ implemented in 2014-2018 its authentication system entitled Multichannel Entry Point (MEP) as the central security component for all processes related to electronic identification and user (especially the bank's client) authentication.

The client's requirements

As part of its digital strategy, Česká spořitelna (ČS) requested a consolidated authentication solution, one which would enable it to develop its own electronic services as well as new online services relating to electronic identification and authentication.

The solution was necessary so as to implement architectural changes in online banking channels by means of centralizing security services (individuals points for the implementation of security operations, security methods and so on).

Key requirements included new security methods for mobile phones (mobile tokens, identified calls and voice biometrics) and the provision of security methods as services, both for internal applications and others outside the control of ČS (pertaining to a partner’s network or a third party).

The solution delivered

In cooperation with Deloitte (prior to 2016), MONET+ implemented in 2014-2018 its authentication system entitled Multichannel Entry Point (MEP) as the central security component for all processes related to electronic identification and user (especially client) authentication. MEP was designed to be a robust security solution, enabling the bank to share security functions across applications. It manages the entire life-cycle of the various authentication methods and issues user and technological interfaces for integration with third parties, including close and open federations. The solution was based on the CASE authentication system, which implemented support for the life-cycle of the given authentication methods – SMS OTP, user password, one-time activation codes and mobile tokens (CASE mobile). The mobile token was visually and functionally adapted to meet the needs of ČS (as per the George Key app). Key modules included the robust solution of MEP FS for federated identity services, based on OAuth, OpenID Connect and SAML protocols. Besides featuring integration functions with banking applications and those of third parties, the FS modules provided an interface for method abstraction (the target application is not affected by changes in security methods). The FS solution by MONET+ included delivery of a solution for federated authorization of transactions, the integration of voice biometrics in utility processes (security method operation portal) and the incorporation of web and mobile apps, including an interface to integrate such apps outside of federated protocols.

The benefits delivered by our solution

These included the following: the transfer of security processes (log-in, authorization, signature) from separate business channels to the central identity platform; the central administration of security methods; optimization of operating and maintenance costs; and the development of security methods.

The principles devised by MONET+ in the system’s architecture adhered with the demands for the solution required by the Erste group for George online banking, with the possibility for extension to other countries.

The solution consolidated the processes of electronic identification and authorization, including UX / UI principles for web and native applications for PCs and mobile devices.

It constituted a unified identity platform for banking applications and interoperability with third parties, employing federated identity principles/services and the PSD2 integration interface.

The solution was implemented by our MCA (Methods of Client Authentication) development team
headed by Milan Hrdlička
Do you want to join the team?

Similar case studies

Enterprise ID, PKI, Smart Cards

MůjKlíč – secure access and authorization
in online banking

Client Authentication, PKI, Smart Cards

Securing access to Servis24 and Business24
electronic banking services with PKI Smart cards

Close

We have solutions.

Contact us
  • Monet+
    • Management
    • Security Policy
    • Personal Data Processing Policy
  • Solutions
    • Enterprise ID
    • Electronic Payments
    • Client Authentication
    • eGovernment Identity
    • Smart Cities
  • Technologies
    • Smart Cards
    • EMV
    • PKI
    • Secure Mobile ID
    • Federated identity
    • Perso Lab
  • Company
    • About Us
    • Our Story
    • Contacts
    • Career
Copyright © 2023 MONET+, a.s. All rights reserved