Data Sheets

Frequently Asked Questions Q: What is Two-Factor Authentication?

A: Two-factor authentication is an authentication process in which the user provides two independent means of identification, one of which is “something you know,” and the other is “something you have” or “something you are.” The “something you know” is typically the combination of a username plus a password. The Anakam Identity Services Platform achieves the second factor through the use of devices that users already have such as mobile phones, landline phones or something “connected to their physical self” like their biometric voiceprint. None of these items require hardware or software distribution to end users which make it cost effective for large-scale audiences. Anakam Two Factor Authentication uses a wide variety of authentication channels to offer a variety of solutions for the strong authentication of your customers. We leverage existing devices such as cell phones, home phones, office phones, voice biometrics, and email to deliver an out-of-band (OOB) expiring one-time passcode (OTP) that confirms that the person possessing the device is the one attempting to access your systems.

Q: What makes Anakam Identity Services different?

A: Unique in the industry, Anakam Identity Services provides a single, integrated platform for no touch, risk-based identity verification and knowledge-based authentication combined with strong authentication. Using seamless access to numerous, proprietary consumer demographic and credit data sources, these systems prevent fraudsters from being able to enroll for online services on the front end. Once enrolled and accurately identified, our system allows you to check the professional credentials of a user electronically, prior to allowing access to downstream business applications.

Q: Why not use hard tokens?

A: As digital workforces grow in popularity, managing hard tokens becomes more complex. Also, as more portals are developed for citizens, consumers, and patients, hard tokens are impractical and costly to distribute to large user groups.

Anakam.TFA® Two Factor Authentication delivers authentication through devices your customers and stakeholders already own. Anakam.TFA uses a wide variety of authentication channels to offer a variety of solutions for the strong authentication of your customers. We leverage existing devices such as cell phones, home phones, office phones, voice biometrics, and email to deliver an out-of-band (OOB) expiring one-time passcode (OTP) that confirms that the person possessing the device is the one attempting to access your systems. Our enterprise customers can also use OATH-compliant existing tokens on mobile phones or other devices as well as hard tokens as part of the authentication solution with Anakam.

Q: What is the difference between Voice Biometrics and Voice Recognition?

A: Voice Recognition is the process of comparing a voice sample with a stored, digital voice model, or voiceprint, for the purposes of establishing or verifying the user’s identity. Voice Recognition is a type of voice biometrics, but voice biometrics can also include other techniques, such as one-to-many or many-to-many voiceprint matches. Anakam Identity Suite also uses Speak Recognition which recognizes who is speaking versus Speech Recognition which recognizes what is being said. Interactive Voice Response (IVR) is not voice biometrics.

Q: Do I need to install client-side software?

A: No. The Anakam Platform does not require the installation of any client-side software, which creates a ubiquitous environment where authentication can be deployed to any type of external business partner or consumer while also reducing the cost of internal software distribution and management.

Q: What is an authentication channel?

A: Anakam Two Factor Authentication delivers the out-of-bounds (OOB) one-time passcode through either SMS (text messaging to pre-registered cell phones ), IVR (voice to pre-registered landline or mobile phones) or email channels. Anakm also offers an OATH-compliant server to support organizations with a need to transition off legacy token requirements.

Q: What Directory Services does the Anakam Platform support?

A: The Anakam Platform supports standards-based LDAP providers. Examples include IBM, Sun, CA, Oracle, Microsoft, and Open LDAP. Anakam also provides interfaces for relational database (custom) directories as well as locally-configured RADIUS accounts on the Anakam.TFA® Server.

Q: What is eMail Verification Link?

A: This is one of the methods that Anakam Identity Services uses to prevent man-in-the-middle attacks. Anakam Two Factor Authentication sends an email directly to the end user which contains an image (a button) or a link (a URL). When the user clicks on the image or link, the Anakam server performs a series of checks on the connection to validate that the computer cannot be the man-in-the-middle. If the user passes validation, a new browser session automatically opens on the user's computer and gives them access to your site or application.

Q: What is SMS?

A: SMS is a communication protocol allowing the interchange of short text messages between the Anakam® and mobile phones. The SMS capability is a communication channel within the Anakam.TFA® Platform that sends a FIPS 140-2 validated One Time Password (OTP) to the user as a log in credential during the second factor requirement. This channel is “Out-of-Band” to the use of the log-in device and is used after the first factor credentials have been established to validate that the user is still holding their pre-registered device.

Q: How does the Anakam Platform support Access Management products?

A: Many of the Access Management products provide the critical identity management hub, but often need a way to authenticate users for access to critical resources. The Anakam Identity Suite® integrates directly with the major Access Management products to provide a comprehensive Identity and Access Management Solution, and allows the flexibility to authenticate users based on the changing needs within the security policies set within these products.

Q: What is IVR?

A: IVR, Interactive Voice Response, is a telecom technology that allows a computer to detect voice inputs between the Anakam IVR Service Provider and any telephone. The IVR is a communication channel within the Anakam platform that sends an outbound automated voice call to deliver a FIPS 140-2 certified One-Time Password (OTP) to the user as a login credential during the second factor requirement. This channel is “Out-of-Band” to the use of the login device and is sent after the first factor credentials have been established.

Q: What is PhishAvertŪ?

A: PhishAvert® is a User-to-Site verification capability within the Anakam Platform and is used to protect against Phishing attacks by allowing the user to confirm that they are at the correct site before they enter their credentials. Site verification is achieved when the user confirms their identity via the use of a secret phrase.

Q: What is Device ID?

A: Anakam Device ID uses a risk-based authentication approach that takes information from the user’s device and network data and creates a risk assessment to determine if the user is valid based on the first credentials being issued. The system uses IP analytics comparison of network information collected during previous login attempts as well as location-based authentication challenges via IP geo-location technology all working to protect against a wide range of online fraud threats including man-in-the-middle attacks.