CORONIC’s SIGN products offer software-based transaction authentication services for smartphones and tablet computers. This includes internet TANs via push or cloud services, or even immediate authorisations without using a TAN at all. The system is compatible with SmartWatch integration and app migrations to new mobile devices, as well as the dual usage on both a smartphone and tablet computer. SIGN supports online banking and online payment transactions with credit cards, for instance. In addition to the SIGN app, there is the SIGN server. It supports the transfer of documents and information between banks and their clients, and can be used as a P2P messaging system.
„Text messaging is an old technology dating from the 1990s. Today, however, smartphone users still usually grant apps the standard permission to access their text messages when they are first installed”
Article published on 27 April 2017
If the Apple or Google cloud services should be unavailable (push channel), the TAN will be provided on a separate, secure poll channel.
As a Java web application, the server components can run in all data centres. This means that banks can operate their critical infrastructure themselves, or use CORONIC as their service provider.
Thanks to a virtual mobile phone number, all former SMS-based banking processes can be carried out without having to make technical changes to the data centre or bank.
The virtual migration of telephone numbers is a function thanks to which an existing SIGN account can be transferred from an old to a new mobile– without requiring an INI letter from the bank.
Thanks to the virtual phone number, the simultaneous installation and multiple use of the app is possible on several terminal devices at any given time.
SIGN uses an advanced encrypted authorisation concept that means it can be opened and used by means of various devices, such as a SmartWatch, instead of requiring an app password.
The transaction number (TAN) for the authentication of a transfer can be fully replaced by a confirmation screen.
The app has a messaging client that is encryption-protected, so it can be used for client information and as a protected channel to send confidential documents to the customer.
“CORONIC GmbH has been providing support and advice about the internet and online security relating to the VR-NetWorld for many years now. We have always considered CORONIC to be an innovative, competent and fair partner, whose know-how and products we have always been glad to use.”
Prokurist, VR-NetWorld GmbH, Bonn
Savings totalling millions of Euros on traditional providers and TAN costs. In the event of a process change or security problems, no additional hardware costs anymore.
Tremendous increase in security levels thanks to the encrypted transmission of transaction-related data. Thanks to CORONIC’s hardening of the software, SIGN is significantly more secure than any other app.
Simple and inexpensive adaptation of all future banking processes thanks to streamlined software changes. No dependence on rigid telecom providers (SIM cloning) or complex adaptations to the bank’s backend.
Phishing is expensive. Additional personnel is required for consultations, analysis and sometimes for court cases. This is why we say: "Push, not text".
BaFin (the German Federal Financial Supervisory Authority) only allows the parallel operation of two logically-separate channels on one and the same physical device if it combines a hardened mobile app and a hardened push app.
When changing from mobile TANs or SMS TANs to push-based services, the bank will save on its texting bill. Depending on the mobile operator, the cost will drop from 5 to 8 cents per text to 1 to 2 cents per push notification.
The Messenger function in SIGN allows the transmission of documents to end clients. This means that in the event of changes to General Terms and Conditions, contracts, interest rates and so on, the bank can save on postage.
Thanks to SIGN's migration function, when a client changes mobiles or when he/she switches from a smartphone to a tablet computer, there is no need for new INI letters and other authorisation processes anymore. The client can generate a migration code and can transfer all data onto the new device with the app.
“Who am I?” That is the question! Philosophers could hardly answer it – but now there is an answer in the case of online payment transactions: legal regulations such as the Payment Service Directive 2 (PSD2) have set forth what biometric characteristics are and who can use them, in order to do online banking, for instance. One can be authenticated through facial recognition, voice recognition, a fingerprint, a proven piece of hardware or even with a password or PIN. Unfortunately, banks and financial service providers have their own ideas as to how these biometric characteristics should be applied to their online transactions. With the CORONIC ID App, everything is easier: traditional processes such as the use of PINs, TANs, passwords, cards and signatures can be integrated, as well as push messages or real biometric authentication characteristics. An ID app as universal proof of identity for all payment processes and logins – everywhere, anytime.