With a radically different approach to authentication, StrongPass is a unique blend of elegance, convenience and security. The authentication is performed using the mobile phone network with no need for the user to remember any passwords. One scan of the webpage QR Code and the user will be authenticated and logged in instantly. 

Authomate Components

Authomate Personal has three key components: Authomate Browser Extension, Authomate StrongPass App, Authomate Authentication Server

The browser extension sits inside the browser and detects when the website requires login and password. Once it detects the need for login/password, it shows an icon in the address bar that the user can use to initiate the StrongPass authentication.

The Authomate StrongPass app resides on the user’s smart phone. All user credentials are stored securely on the phone with multiple layers of encryption and once the user decides to use StrongPass for authentication, the relevant login/password are sent to the extension safely and securely.

The Authomate server acts as the glue and gatekeeper for the complete out-of-band authentication process. It authenticates the Browser extension as well as the user and their phone and plays a key role in securely communicating the user credentials to the browser extension

How It Works

  1. The user goes to the login page of the website they are trying to access.
  2. The browser extension adds the Authomate Icon in the browser toolbar.
  3. The user clicks on the Authomate icon in the browser toolbar. 
  4. The browser extension presents the QRCode to the user.
  5. The user logs into the StrongPass app on the smartphone using their gesture/passcode.
  6. The user scans the QRCode using the StrongPass app.
  7. If the credentials are not in the StrongPass app secure database, the app prompts the user to provide the credentials on the smartphone and stores them in the local secure database.
  8. The StrongPass app encrypts the credentials and sends them to the browser extension through the Authomate Authentication Server.
  9. The browser extension then populates the login page with the user credentials and submits the page to the website.
  10. The login to the site succeeds (provided the saved credentials are correct).