Trust1Authentication

25/06/2024 Trust1team - Published on 25/06/2024 - Last update :

Hello Dear Reader !

In previous blogs we have mentioned the existence of Trust1Authentication, but as we have not yet dedicated a blog to this wonderful product.....here it is!

All the answers to your questions on authentication and why T1T has developed this product.

Enjoy reading !

Authentication: an intro

Authentication (from Greek: αὐθεντικός authentikos, "real, genuine", from αὐθέντης authentes, "author") is the act of proving an assertion, such as the identity of a computer system user. In contrast with identification, the act of indicating a person or thing's identity, authentication is the process of verifying that identity.

(thank you wikipedia)

Authentication is proving to a system or application that it is YOU who is trying to access. A lot of systems and applications still allow username and password as means of authentication. It has been proven numerous times that this is not a safe way of authentication.

There are better and safer ways using smart cards, tokens, other hardware means or mobile ID's (Smart-ID) and of course there is Trust1Team to facilitate that for you.

The T1T Authentication service

Here is the good news. It is a SERVICE. The only thing you need to do to is integrate two or maximum three steps in your web application:

• start a new session and redirect the user to the T1T authentication page

• parse the result (through a webhook) and give access to requester (user of your application)

• [optionally] retrieve a detailed validation report
  

Benefits when using the Trust1Authentication service:

• very quick and easy integration (documented on gitbook)

• dynamic configurable means (ways for a user to authenticate, any of the long list that are supported by the Trust1Connector or the Truststore)

• detailed report for certificate validation

• no need to dive into detailed security implementation in a complex domain

• dynamic branding with customisable authentication flows (Brand the authentication service to your look and feel and the user will never know that you redirected him to our service)

• low-cost and maintained externally

A bit of technical information

The T1Authentication service, hosted by Trust1Team is an authentication page which can be used to authenticate users to your application using:

• smart cards, tokens or other hardware identity means (any of the long list that are supported by the Trust1Connector or the Truststore)

• Smart-ID mobile app

The service is web layer on top of the Trust1Connector.

Conclusion

If you are looking for a low cost and easy to maintain but most importantly a much safer way for you users to authenticate to your application start using Trust1Authentication.

Implement the validation report (optionally) to keep your CISO and CIO happy!

Not convinced yet? Try it yourself here.

If you need more information about our authentication solution, get in touch and we will be happy to help you secure your application.