Secure Access Integrated Payment Platforms

A new password reset plug-in

Scenario

With the increasing digitalization of financial services, centralized identity and access management has become essential for ensuring security, efficiency, and regulatory compliance. The adoption of advanced authentication and authorization technologies is crucial for protecting sensitive data and providing a seamless experience for users. 

Several banking institutions currently rely on a unified payment platform to manage their digital services. Technology Reply's intervention aimed to optimize access management on this platform, ensuring that users from various financial institutions could authenticate smoothly and securely, in addition to simplifying and securing critical processes such as credential reset. 

Solution

Technology Reply has already developed access federation solutions using protocols like SAML and OpenID Connect, allowing partner banks to integrate their users into the portal and offer a smooth and secure authentication experience. 
Through the use of Oracle technologies like Oracle Access Manager (OAM), Oracle Unified Directory (OUD), and Oracle HTTP Server (OHS), integration and identity federation among the participating banks have been ensured. 

In addition to these services, Technology Reply recently started developing a new password reset plug-in within the payment platform's IAM ecosystem. 
This plug-in integrates with OAM and introduces a Multi-Factor Authentication (MFA) system specifically customized for the needs of the platform and the involved financial institutions. 

The project, started in May of last year and currently in the User Acceptance Test (UAT) phase, introduces two authentication methods for password reset: 

  • QR Code via App: the user receives a QR code that can be scanned with a dedicated app to complete the authentication process. 

  • Push Notification on Mobile: a notification is sent to the user's registered device, which can approve the request with a simple tap. 

In addition to managing password resets, the plug-in includes a troubleshooting service to support users in case of access issues, reducing the load on IT support and improving the overall experience. 

Benefits

Thanks to this solution, Technology Reply strengthens its commitment to providing advanced tools for digital identity management, contributing to the evolution of security infrastructures in the financial sector and simplifying access to digital payment services. 

The implementation of this plug-in brings numerous benefits:

Enhanced Security

The use of MFA significantly reduces the risk of unauthorized access and credential stuffing attacks.

Improved User Experience

Users from the different banks integrated into the platform can reset their credentials quickly and securely without having to go through complex procedures or IT support.

Centralized Management

Integration with the payment platform's IAM infrastructure allows for unified identity and access management, ensuring effective control over multiple financial institutions. 

Regulatory Compliance

Operational Efficiency

The integrated troubleshooting service reduces the number of IT support requests, optimizing business resources.