OneSpan Cloud Authentication (OCA) allows you to integrate Push Notification-based authentication in your solution. By using a push mode, a new OneSpan Mobile Authenticator Studio application is enabled on a mobile device to authenticate the user. The user receives a notification prompt on their mobile device during the authentication process and completes this process by simply tapping the mobile device.

Supported devices:

  • OneSpan Mobile Authenticator Studio 4.18 and later
  • Mobile Security Suite Orchestration SDK

Prerequisites

To ensure a successful Push Notification-based authentication, the following prerequisites must be met:

  • A Mobile Authenticator Studio/ Mobile Security Suite Orchestration SDK mobile application has been successfully activated and customized.

    For a short overview, refer to Offline activation of a OneSpan Mobile Authenticator Studio mobile application. For more detailed information about the customization and instructions on the necessary steps for two-step offline activation, refer to the OneSpan Mobile Authenticator Studio Customization Guide.

  • The user has shared their static password with the back end-system of the TID platform.

For more information, refer to the OneSpan Mobile Authenticator Customization Guide.

Authenticating via Push Notification

Push Notification-based authentication via Mobile Authenticator Studio - overview

Push Notification-based authentication via Mobile Security Suite Orchestration SDK - overview

Sequence of a user authentication operation via Push Notification

  1. The user authenticates with their credentials:
    • For Mobile Authenticator Studio, they enter the Push Notification keyword push and their static password.
    • For Mobile Security Suite, they enter the Push Notification Orchestration SDK keyword push and their PIN.
  2. The user receives a Push Notification message on their mobile device.
  3. The user approves the request to login.

Reject a Push Notification-based authentication request

The user rejects the Push Notification-based authentication request on their mobile device.

Reject Push Notification-based authentication request for Mobile Authenticator Studio - overview

Reject Push Notification-based authentication request for Mobile Security Suite Orchestration SDK - overview

Prerequisites

To ensure that the user is able to reject a Push Notification-based authentication request, the following prerequisites must be met:

  • A Mobile Authenticator Studio mobile application has been successfully activated.
  • The user has shared their static password with OneSpan Trusted Identity platform.