OneSpan Security Solutions

DIGIPASS FX Authenticators – Phishing-resistant, passwordless security

DIGIPASS FX is a modern family of authenticators from OneSpan: FIDO2-certified security keys that enable phishing-resistant, passwordless authentication, thus protecting accounts, networks and applications from account takeovers.

DIGIPASS FX1 — Passwordless authentication with biometrics

• FIDO2-secure, passwordless security key with fingerprint sensor.
• Phishing-resistant, based on FIDO2/Passkey technology.

Highlights

• Biometric authentication: User confirms identity via fingerprint – particularly user-friendly and secure.
• Multi-connectivity: Supports USB-C, Bluetooth and NFC – suitable for PCs, laptops, tablets and smartphones.
• Elimination of traditional passwords through FIDO2 passkeys for login, SSO or cloud apps.

Target audience

Companies that want high security and simple UX through biometric, passwordless authentication.

DIGIPASS FX7 — Simple, robust FIDO2 security key

• Standard FIDO2 security key for phishing-resistant, passwordless authentication – without biometrics.

Highlights

• Simply “Tap-to-Authenticate”: User confirms presence by pressing a button or quickly touching the screen.
• Plug-and-Play USB-C: Works immediately after plugging it in – no additional driver is needed.
• Supports FIDO2 & CTAP: Compatible with hundreds of FIDO2-enabled services (IAM, Cloud, VPN, etc.).
• Various options available: Models with FIPS certification or NFC support.

Target audience

Everyday passwordless authentication (e.g., enterprise SSO, cloud apps, email login).

---

DIGIPASS FX2 — Authentication + Visual Transaction Signing

• Enhanced FIDO2 authenticator with “What You See Is What You Sign” (WYSIWYS) for transaction verification – especially for banks and financial services.

Highlights

• Phishing-resistant & passwordless: Combines FIDO2 security with real-time transaction signing.
• Trusted Display: Users see the actual transaction details on a separate screen before signing – protecting against manipulation.
• Cronto visual cryptogram + FIDO2: Cryptographically links transaction contents to the signature to prevent AitM attacks.
• Multi-connectivity: USB, Bluetooth & NFC; optional PIN/biometric unlocking possible.

Target audience

Banks and financial institutions that require secure, traceable transaction approvals in addition to login authentication.

---

Mobile Security Suite (MSS) – Comprehensive security platform for mobile apps

The OneSpan Mobile Security Suite (MSS) is a developer-centric security platform that integrates mobile authentication, app hardening, and fraud detection. It provides an end-to-end security layer for mobile applications, protects critical assets, and supports regulatory requirements.

• Multimodal authentication: Support for OTP, push authentication, FIDO2/WebAuthentication, biometric methods, and adaptive MFA. All methods can be integrated into apps via flexible APIs.
• App Shielding & Hardening: Protection against reverse engineering, code injection, jailbreak/root detection, debugging and runtime manipulation.
• Encrypted storage & communication: Secure key management, AES-256 encrypted local storage and TLS/HTTPS secured data transmission.
• Fraud detection & risk analysis: Device profiling, anomaly detection and real-time transaction monitoring to block mobile fraud attempts early.
• SDK architecture: Cross-platform (iOS, Android), modular design, easy integration into existing apps and backend systems.
• Compliance & Standards: Support for PSD2, GDPR and other industry-specific security requirements.

Target audience:
Software developers and security teams who want to make mobile applications resilient against modern attacks, especially for finance, e-commerce or enterprise apps.

Use cases

• Secure login and transaction signing in mobile customer apps
• Protection of sensitive data on end devices
• Real-time fraud detection and risk analysis for mobile transactions