Comarch tPro ECC meets the requirements of customers looking for fast, effective and convenient solutions in the field of online banking security.
It is a small, lightweight, driverless USB token used mainly for authorization of documents and online transactions, as well as identity confirmation - based on a digital signature.
The signing process requires the user to authenticate it using a button built into the device. This protects transactions against remote attacks, ensuring that no third parties intervene in transfer instructions without the user's knowledge.
Comarch tPro ECC provides a higher level of security than traditional solutions based on PKI public key infrastructure such as cards or tokens.
The device is devoid of an operating system, which makes it resistant to commonly known hacking attacks. Thanks to the use of a dedicated digital system, it does not require SIM cards to be replaced when certificates expire.
The firmware update mechanism has been designed to prevent uploading data from an unauthorized source to the device.
Having no drivers needed to be installed makes it very easy to use our device. Money transfers can be made at any workstation, which significantly increases usability and translates into:
- lower implementation and maintenance costs
- smaller failure rate
- easier problem diagnosis
- faster operation
- automatic updates
An encrypted TLS channel is used for communication between the web browser and the token, with the validity of the communication certificate spanning 2 years (this period may be shortened at customer's request).
Encryption and signing operations are performed using a pair of keys in the device's secure storage facility. Access to the keys is protected by a PIN code. The number of unsuccessful access attempts is limited in advance, and exceeding this limit will result in blocking the use of cryptographic material. For each pair of keys one can upload at user certificate and its subsequent renewal.
Comarch tPro ECC has a unique mechanism of user presence detection in the form of a button located on the housing of the device. Its pressing and releasing is required for each operation performed with user keys.
The device is recognized in the operating system as a network card and can safely communicate with the web browser without the need to install any drivers.
Comarch tPro ECC works on Windows, MacOS and Linux. Its architecture is based on universal communication protocols and makes the device independent of specific mechanisms of web browsers (extensions, integrated API).
Uploading a new version is automatic and does not require user intervention. Each binary package is verified by the device before starting the update process in order to prevent the installation of software from unauthorized sources.
The token is delivered with libraries enabling quick integration on the front/back-end side. It is also possible to use the ready-made Comarch IAM Authentication Server solution, which is fully integrated with the following solutions:
- tPro ECC
- tPro Mobile
- tPro SmartCard
- and selected third-party tokens
Comarch tPro ECC is available in two variants due to supported cryptographic algorithms. The most popular variant is RSA which supports 2048-bit keys. It is also possible to use elliptical curve cryptography with a key size of up to 521 bits.
Download tPro Solutions leaflet
Read more about how to protect your customers from internet frauds
Tell us about your business needs. We will find the perfect solution.