Kanak Alper, Ergün Salih, Arif İbrahim, Tanrıseven Sercan, Uğur Niyazi, van Schaik Gert-Jan, Badii Atta
Research and Development, ERARGE, Ergünler Co. Ltd., Isparta, 32100, Turkey.
Research Center, ERGTECH, Zurich, Switzerland.
Open Res Eur. 2023 Feb 23;3:40. doi: 10.12688/openreseurope.15448.1. eCollection 2023.
Given the rapidly evolving developments in Fintech, Insurtech, Open Banking, and Mobile Money business models in recent years, the capability for ensuring strong authentication remains the most pressing need for the protection of security and privacy of data in this sector as in many other areas. The security-integrity of insurance and financial transactions and workflows is vitally dependent on access control mechanisms to deliver strong multi-factor authentication (MFA) with operationally acceptable latency and throughput to support real-time response, particularly as demanded by the increasing online and mobile financial service models. The Critical-Chains Project was motivated by the above objectives as underpinned by the overarching commitment to accountability engineering as required by the operational logic. This must be crucially supported by real-time hardware-enabled services comprising authentication (including Distance Bounding and Prover's Proximal Location Presence Verification), hardware security and cryptography (AUTH-as-a-Service, Hardware-Security-as-a-Service, Cryptography-as-a-Service) as delivered through the Critical-Chains main framework. This paper reports on the development and evaluation of the innovative Hardware-enabled authentication and security capabilities of the Critical-Chains framework which is successfully validated in the context of financial services, specifically the insurance claim settlement application domain, and can also be deployed in any other domains where trusted authentication and specific location-time bound prover's presence verification is required.
鉴于近年来金融科技、保险科技、开放银行和移动支付商业模式的快速发展,与许多其他领域一样,确保强身份验证的能力仍然是保护该领域数据安全和隐私的最迫切需求。保险和金融交易及工作流程的安全完整性至关重要地依赖于访问控制机制,以提供具有可接受操作延迟和吞吐量的强大多因素身份验证(MFA),以支持实时响应,特别是随着在线和移动金融服务模式的不断增加所提出的要求。关键链项目正是受上述目标的推动,其基础是运营逻辑所要求的对问责工程的总体承诺。这必须由通过关键链主框架提供的包括身份验证(包括距离限制和证明者近端位置存在验证)、硬件安全和加密(身份验证即服务、硬件安全即服务、加密即服务)在内的实时硬件支持服务至关重要地予以支持。本文报告了关键链框架创新的硬件支持身份验证和安全功能的开发与评估,该框架已在金融服务领域,特别是保险理赔结算应用领域成功验证,并且还可部署在任何需要可信身份验证和特定位置 - 时间绑定证明者存在验证的其他领域。