Comarch Transaction Protection with security token

USB token used mainly for authorization of documents and online transactions

Comarch tPro ECC meets the requirements of customers looking for fast, effective and convenient solutions in the field of online banking security.

It is a small, lightweight, driverless USB token used mainly for authorization of documents and online transactions, as well as identity confirmation - based on a digital signature.

The signing process requires the user to authenticate it using a button built into the device. This protects transactions against remote attacks, ensuring that no third parties intervene in transfer instructions without the user's knowledge.

High security
Comarch tPro ECC provides a higher level of security than traditional solutions based on PKI public key infrastructure such as cards or tokens.
The device is devoid of an operating system, which makes it resistant to commonly known hacking attacks. Thanks to the use of a dedicated digital system, it does not require SIM cards to be replaced when certificates expire.
The firmware update mechanism has been designed to prevent uploading data from an unauthorized source to the device.
Always ready to use
Having no drivers needed to be installed makes it very easy to use our device. Money transfers can be made at any workstation, which significantly increases usability and translates into:
- lower implementation and maintenance costs
- smaller failure rate
- easier problem diagnosis
- faster operation
- automatic updates
An encrypted TLS channel is used for communication between the web browser and the token, with the validity of the communication certificate spanning 2 years (this period may be shortened at customer's request).

Strong cryptographic mechanisms

Encryption and signing operations are performed using a pair of keys in the device's secure storage facility. Access to the keys is protected by a PIN code. The number of unsuccessful access attempts is limited in advance, and exceeding this limit will result in blocking the use of cryptographic material. For each pair of keys one can upload at user certificate and its subsequent renewal.

Protection against remote attacks

Comarch tPro ECC has a unique mechanism of user presence detection in the form of a button located on the housing of the device. Its pressing and releasing is required for each operation performed with user keys.

Remote software update

No drivers

The device is recognized in the operating system as a network card and can safely communicate with the web browser without the need to install any drivers.
Comarch tPro ECC works on Windows, MacOS and Linux. Its architecture is based on universal communication protocols and makes the device independent of specific mechanisms of web browsers (extensions, integrated API).

Remote software update

Uploading a new version is automatic and does not require user intervention. Each binary package is verified by the device before starting the update process in order to prevent the installation of software from unauthorized sources.

Support for RSA2048/ECC521

Quick integration

The token is delivered with libraries enabling quick integration on the front/back-end side. It is also possible to use the ready-made Comarch IAM Authentication Server solution, which is fully integrated with the following solutions:
- tPro ECC
- tPro Mobile
- tPro SmartCard
- and selected third-party tokens

Support for RSA2048/ECC521

Comarch tPro ECC is available in two variants due to supported cryptographic algorithms. The most popular variant is RSA which supports 2048-bit keys. It is also possible to use elliptical curve cryptography with a key size of up to 521 bits.

Comarch tPro ECC

USB token used mainly for authorization of documents and online transactions

High security

Always ready to use

Product features

Strong cryptographic mechanisms

Protection against remote attacks

No drivers

Remote software update

Quick integration

Support for RSA2048/ECC521

Comarch Transaction Protection family