StarSign® FIDO

Authentication
Solutions

StarSign FIDO – Scalable StarSign FIDO

solutions for different Authentication Server
security needs

Enterprises continue to evolve business The StarSign FIDO Authentication Server • Supported authentication protocols:
processes and transactions to online, cloud, enables seamless and frictionless authentica- FIDO UAF, FIDO U2F 1.2, FIDO2
and mobile services, but are constantly tion with FIDO UAF, FIDO2, and FIDO U2F. • Straightforward integration into your
sacrificing fast and easy access for robust Employees, customers, and end users get existing back-end environment via REST
authentication security. Solutions based on compliant, secure, and convenient access to API and SAML2, and can be hosted on any
G+D’s StarSign FIDO turn that around and their digital systems and services. Both environment supporting Java EE
make online security a simpler and better desktop as well as mobile environments are • Does not require any PKI or complex
user experience while providing stronger very well supported with a choice of various infrastructure
security and reducing risks for the enterprise. authentication factors, including hardware • With its multi-tenancy support, it is largely
FIDO Authentication enables password-only tokens, software solutions, and biometrics. scalable and can be deployed in HA
logins to be replaced with secure and fast The StarSign FIDO Authentication Server’s redundant clusters
logins across websites and apps. Our StarSign key to success is its combination of conveni- • PSD2 compliant and Common Criteria
FIDO solution offers a wide variety of options ence, security, compliance, and flexibility. certified
that can be tailored to your specific needs. It As an interoperable solution based on open • Optional risk-based authentication
is highly scalable and offers many different industry standards set forth by the FIDO supporting behavioral analysis (swiping,
authenticator form factors that can be Alliance, the StarSign FIDO Authentication typing), context analysis (location, net-
individually combined in a turnkey FIDO solu- Server is future-proof and offers security of work), device analysis (device fingerprint/
tion to suit your specific needs. Additionally investment. It is fully PSD2 compliant and parameters), and definitions of policies
supporting a unique set of innovative user Common Criteria certified and does not • Quick installation and integration into
verification methods for quick, frictionless, require a PKI or complex infrastructure. existing enterprise environments
and secure online authentications based on • Professional support, maintenance, and
various software and hardware authenti- FEATURES: training services
cators, the StarSign FIDO portfolio is one of • Multifactor authentication server covering
the most powerful and flexible FIDO product both enterprise and consumer-focused use
lines on the market. They are all easy to cases
implement and, once integrated into your • Allows convenient and secure user
environment, provide you with enormous verification based on biometrics on mobile
benefits in terms of cost-efficiency by devices or with FIDO-enabled hardware
reducing support costs and improving user devices, e.g. the G+D StarSign FIDO Card or
experience based on highly stringent G+D StarSign FIDO Key Fob
security. • Complementary client SDKs for the mobile
platforms Android and iOS that allow easy
and secure integration into your mobile
applications including biometric modalities
such as fingerprint, iris, voice, and face
with liveness detection
 Service Service Provider
Provider App Server
App

FIDO
Interface FIDO
Server

FIDO Client fido Data-

base

FIDO ASM
KDS

HSM

StarSign FIDO Authenticators FEATURES:

• Seamless and frictionless authentication with FIDO
G+D offers the broadest range of FIDO Authenticators U2F and FIDO2
that range from purely software-based to a wide • Convenient and secure user verification based on
selection of hardware authenticators based on smart card PIN
card chip technology including the G+D StarSign FIDO • Plug&play with Windows 10 systems
Card and the StarSign FIDO Key Fob. • Works with any FIDO U2F and FIDO2 server and
enabled browser
• Supports a dual interface for contactless (NFC) and
StarSign FIDO Software contact-based (card reader) transactions
Authenticator • Can be optionally combined with physical access
control
The StarSign FIDO SW Authenticator is FIDO UAF
certified and can be easily integrated into Android and
iOS applications. It also allows users to use their mobile StarSign FIDO Key Fob
device for convenient and secure user verification
based on biometrics. It is purely based on software and G+D’s StarSign Key Fob is a hardware token device
does not require any additional hardware. Key with a stylish round shape and coin-like dimensions
generation, storage, and usage are based on G+D’s that supports FIDO U2F and FIDO2 in a unique hybrid
TAK solution, the most stringent software security tool mode that allows plug&play use on any FIDO U2F and
kit on the market today. FIDO2-enabled operating system and Internet browser
without the need of special drivers, e.g. for Windows
FEATURES: logon on Windows 10 or webpage login via the
• Seamless and frictionless authentication with FIDO Internet browsers Microsoft Edge or Google Chrome.
UAF The user verification is performed via an integrated
• Client SDKs for the mobile platforms Android and biometrics sensor that supports enrolment of up to 20
iOS that allow easy and secure integration into your fingers and quick authentications by simply touching
mobile applications, including biometric modalities the sensor surface. The StarSign FIDO Key Fob supports
such as fingerprint, iris, voice, and face with liveness USB, BLE, and NFC-based FIDO transactions and can be
detection easily combined with other applications such as
• Purely based on software, no hardware required physical access control.
• HSM-based key generation and key rotation
• Code obfuscation and secure storage based on white FEATURES:
Giesecke+Devrient
box cryptography • Seamless and frictionless authentication with FIDO
Mobile Security GmbH
U2F and FIDO2 Prinzregentenstrasse 159
• Convenient, fast, and secure user verification based 81677 Munich
StarSign FIDO Card on biometrics sensor Germany
• Plug&play with Windows 10 systems
P +49 89 41 19-0
G+D’s StarSign FIDO Card supports FIDO U2F and • Works with any FIDO U2F and FIDO2 server and [email protected]
FIDO2 in a unique hybrid mode that allows plug&play enabled browser www.gi-de.com/mobile-security
use on any FIDO U2F and FIDO2-enabled operating • Supports USB (type C), BLE, and NFC
system and Internet browser without the need of • Rechargeable battery
special drivers, e.g. for Windows logon on Windows 10 • Can be optionally combined with physical access StarSign® is registered trade-
or webpage login via the Internet browsers Microsoft control marks of Giesecke+Devrient
Mobile Security GmbH. Java is a
Edge or Google Chrome. The user verification can be
registered trademark of Oracle
optionally performed via a card PIN that can be and/or its affiliates.
individually defined by the card holder.
The StarSign FIDO Card is a dual interface card that © G+D Mobile Security GmbH,
2020.
allows contact-based and contactless FIDO transactions
All technical data subject to
and can be easily combined with other applications change without notice.
such as physical access control. G+D Mobile Security patents.

October 2020