Search Keyword : 0
-
What are Pinpad Readers?
As smart card technology becomes widely accepted, developers add more features to smart card reading devices to improve usage experience and security. In this light, smart card readers with Pinpad make secure and cost-effective smart card applications beyond the traditional system set-up possible. This is done through more flexible device integration, depending on your system requirements.
https://www.acs.com.hk/en/frequently-asked-questions/5/smart-card-readers-with-pin-pad/ -
What are the Pinpad readers that ACS offers?
ACS has two product families for the Pinpad product line: ACR83 and ACR89. ACR83 PINeasy PIN-pad reader is one of the smallest in the market, and comes with a simple but highly secure authentication process. ACR89 Handheld smart card reader packs in multiple features for the cost of single reliable device. It can operate on either PC-Linked or Standalone Mode for multiple applications, running a unified system for both office and field-based applications.
https://www.acs.com.hk/en/frequently-asked-questions/5/smart-card-readers-with-pin-pad/ -
What is One-Time Password (OTP)?
One-time password (OTP) is an alphanumeric code that is valid for only one login session or transaction. OTPs are considered not vulnerable to replay attacks, making them a suitable security feature for online banking applications. However, OTPs are difficult to memorize. Thus, they require additional technology.
https://www.acs.com.hk/en/frequently-asked-questions/9/dynamic-password-generators/ -
How are OTPs generated?
OTPs can be generated through the following methods: Time-Synchronization between the authentication server and the client Mathematical Algorithm based on Previous Password, where OTPs generated must be used in a predefined order Mathematical Algorithm based on a Challenge, where the challenge can be a random number chosen by the authentication server, or transaction details
https://www.acs.com.hk/en/frequently-asked-questions/9/dynamic-password-generators/ -
What are Dynamic Password Generators?
Dynamic password generators are devices that generate OTPs to authenticate different operations/transactions. Some dynamic password generators are called security tokens. Users can carry around security tokens and generate OTPs by pressing a button or integrating a bank card into the token, which would then display the OTP on a small screen.
https://www.acs.com.hk/en/frequently-asked-questions/9/dynamic-password-generators/ -
What are MasterCard CAP and Visa DPA?
Chip Authentication Program (CAP) is a MasterCard initiative and technical specification using EMV banking cards to authenticate users and transactions in online and telephone banking. The CAP specification defines a handheld device (CAP reader, which is the dynamic password generator) with a smartcard slot, a decimal keypad, and a display capable of displaying at least 12 characters. CAP is a form of 2-factor authentication, as both a smartcard and a valid PIN must be present for a transaction to succeed. VISA also introduced its own authentication method based on the CAP standard, Dynamic Passcode Authentication (DPA).
https://www.acs.com.hk/en/frequently-asked-questions/9/dynamic-password-generators/ -
What are the different ACS Dynamic Password Generators?
APG8201 is a standalone handheld device for generating one-time passwords from the user’s EMV card and PIN. It is compliant to major banking standards such as EMV Level 1, MasterCard CAP and VISA DPA. APG8201 can also support PC-linked operations that can be used for Secure PIN Entry (SPE) to protect the PIN from security attacks. APG8202 is a standalone handheld device for generating one-time passwords from the user’s EMV card and PIN. It is compliant to major banking standards such as EMV Level 1, MasterCard CAP and VISA DPA.
https://www.acs.com.hk/en/frequently-asked-questions/9/dynamic-password-generators/ -
In what types of applications can the APG8201, APG8202 and APG8205 be used?
The one-time password (OTP) functionality of the APG8202, APG8202 and APG8205 makes them suitable for online banking applications. The OTPs can serve as added security before several transactions like banking logons, online transactions and telephone orders can be performed. Also, APG8201 is equipped with a Secure PIN Entry (SPE) function, which ensures safe PIN entry and PIN change in a PC environment. The PIN is securely entered on the device rather than on the vulnerable PC or workstation, hence eliminating the possibility of a Virus/Trojan getting of the PIN. This security feature is helpful in home banking and government e-ID applications.
https://www.acs.com.hk/en/frequently-asked-questions/9/dynamic-password-generators/ -
How do the APG8201, APG8202 and APG8205 use OTPs for online banking applications?
Generally, there are different modes to using OTP for online banking. Different modes would require different sets of information from users, e.g. challenge number, amount of money, account number, etc. For details, please refer to our demo video for a clearer presentation: http://www.apg8202.com/pages/dynamic-password-generators/demo
https://www.acs.com.hk/en/frequently-asked-questions/9/dynamic-password-generators/ -
What are the cards supported by APG8201, APG8202 and APG8205?
The devices support MCU cards following the ISO 7816 standard, and cards using either T=0 or T=1 protocol.
https://www.acs.com.hk/en/frequently-asked-questions/9/dynamic-password-generators/