Adaptive Two Factor Authentication
Spriv’s patented technology allows you to use adaptive two factor authentication if the phone location fingerprint and the computer fingerprint from which the user entered his username and password match by Spriv’s risk based two factor authentication engine. For privacy reasons Spriv will not share the mobile phone data, but only verify that the computer and the mobile phone unique fingerprint match. If both fingerprints match, then Spriv will automatically approve the transaction. If the fingerprints mismatch, then the user would be able to decide whether to approve or deny the transaction. As a developer, you will be required to provide to Spriv’s API the end user’s browser agent like Cookie or Secret Cookie.
Pairing
The pairing process will link the user’s mobile phone with his email address. Simply add the user’s email to Spriv’s Risk Based Two Factor Authentication platform and Spriv would email a unique paring URL link to your user. The user would need to install Spriv’s application on his mobile phone first, open and click on the unique URL link from his mobile phone later. The paring unique URL link has an expiration time of 48 hours, you can always issue a new pairing unique URL email if it expired or if the user has a new mobile phone. Spriv will push a notification back to your website once the user successfully completes the pairing process.
Allow | Deny. Multi Factor Authentication
In addition to Adaptive Two Factor Authentication, Spriv’s platform provides an additional optional Two Factor Authentication that requires the user to allow/deny specific transactions. Example: when the user makes a high risk transaction such as changing his address or transferring a large amount of money or when the user remotely login to his Windows (RDP) or Unix/Linux server (SSH/Terminal). Simply send the transaction information to Spriv and Spriv will provide the user’s allow/deny determination.
SMS code Authentication
Upon free registration at Spriv’s Risk Based Two Factor Authentication, Spriv will send a seven digits code SMS to your mobile phone, you would be required to enter the seven digits code during your first time login to Spriv. Your Spriv Risk Based Two Factor Authentication account would be activated once the correct seven digits code is provided.
Spriv’s SMS code Authentication works in more than 200 countries!
Two way SMS | Multi Factor Authentication
For two-way SMS authentication, an SMS requesting an SMS reply is sent to the user. Spriv pushes the user’s reply via HTTP POST once the user replies to Spriv. For example: “Did you buy a laptop from ‘examplecompany’ for $476? If yes, please reply with “yes” and we will ship your order. If not, please reply “no” and we will cancel the order.” Two Way SMS works in more than 200 countries!
TOTP ‘Time-Based One-Time Password‘
As defined in RFC 4226 Spriv’s TOTP provides a six digit number generated using the mobile phone internal clock with TTL 30 Seconds. Spriv’s TOTP Two Factor Authentication allows you to authenticate the user even when the user is traveling and has no internet or carrier reception.
Please send your feedback
Spriv is constantly improving and adding new features to our patented technology. Spriv’s team highly appreciates your input and we would love to get your opinion/feedback and suggestions for adding new features. Please feel free to contact us via our feedback page below and we will promptly respond to your inquiry.