RSA has launched software developer kits (SDKs) for mobile application developers to integrate one-time password (OTP) or risk-based authentication for mobile applications.
Removing the need for a separate authentication device, RSA said that this will allow developers to to leverage its SecurID technology within mobile applications for platforms such as Android, BlackBerry and Apple iOS.
Available from November, the SDKs will allow developers to embed SecurID into an application to insist on strong one-time password authentication without impacting user experience when entering a username and password.
According to RSA, its API is designed to enable end-users to authenticate through mobile applications and, instead of prompting the user to manually enter the one-time token code, the mobile application does this automatically.
This software token can also be used outside of the mobile application for traditional authentication tasks.
Also launched is an SDK for RSA's Adaptive Authentication risk-based authentication and fraud-detection platform. RSA said it is engineered to be embedded into mobile applications to help protect both login and post-login user activities by measuring risk indicators to identify high-risk and suspicious activities.
Sam Curry, CTO, identity and data protection, at RSA, said: “This is one of our most innovative implementations of theSecurID software token because it is optimised to run in mobile apps in a manner that makes the strong authentication completely hidden from the user.
“It's designed for security and convenience and users typically don't even know they are being protected. Users can quickly authenticate through the mobile channel while Adaptive Authentication helps maintain protection in the background.”
Dan Schiappa, senior vice-president and group general manager of identity and data protection at RSA, said: “RSA believes the implementation of strong OTP and risk-based authentication within mobile applications, in a manner that doesn't diminish the user experience, can help address some of those concerns and help advance development of secure mobile applications across the industry.”