RSA Adaptive Authentication Mobile SDK Modules enable mobile application developers to integrate the world-class security of RSA Adaptive Authentication risk-based authentication into mobile applications on device platforms that include Android™ and Apple® iOS. Adaptive Authentication benefits the customer through offering multi-channel fraud protection. By providing a unified view of the end user of web and mobile channels, Adaptive Authentication provides protection and authentication per channel while analyzing behavior and activities across channels.
The Mobile Data Collection Module provides collection methods for mobile device identifiers and mobile device geolocation data that are used for risk assessment in Adaptive Authentication. The module is designed to be embedded in the customer mobile application, from where it enables flexible and customizable collection of device identifiers and location information. The Mobile Data Collection Module powers the Mobile Channel Protection Module, an extension of Adaptive Authentication that compliments the Web Channel Protection Module.
The Mobile Authentication Module provides integration for Adaptive Authentication to enable mobile application developers to utilize fingerprint and eyeprint biometric technology for out-of-band step-up authentication purposes in Adaptive Authentication. These features leverage the end-to-end integration of the Adaptive Authentication Mobile SDK biometrics authentication methods (Fingerprint and Eyeprint) as an out-of-the-box step-up method within Adaptive Authentication. Biometric authentication enables customers to provide end users with ease-of-use, flexibility, and security through a variety of innovative authentication methods, which are appropriate for different end users, scenarios, and device types. To ensure maximum privacy protection, all of the biometric data that the SDK collects remains on the user device. The SDK provides a set of API calls that support initial end-user enrollment and subsequent authentication validation. The Mobile Authentication Module can be integrated within the logical mobile application flows, to provide in-app and on-device biometric authentication methods.
What’s New in This Release
Support for operating systems
RSA Adaptive Authentication Mobile SDK Modules 3.7 was certified with:
- iOS 10 mobile operating system
- Android 7 mobile operating system
Eyeprint verification enhancement
In RSA Adaptive Authentication Mobile SDK Modules 3.7, the Mobile Authentication Module is enhanced to better detect spoofing attempts and validate liveness of the eye scan. This enhancement is designed to prevent attackers from using printed photos or videos during eyeprint authentication.
Modification to the fingerprint enrollment flow
In RSA Adaptive Authentication Mobile SDK Modules 3.7, the Mobile Authentication Module automatically enrolls fingerprints through an operating system API call. This means end users are no longer actively involved to enroll with their fingerprint, once their device is already enrolled. This change brings ease of use and leverages the enrollment already done.
If you previously implemented fingerprint authentication using RSA Adaptive Authentication Mobile SDK Modules, you should adjust your implementation to the new enrollment flow.
User interface enhancements
In RSA Adaptive Authentication Mobile SDK Modules 3.7, the Mobile Authentication Module includes the following user interface enhancements:
- Improved enrollment and authentication flows to align to operating system best practices in Android and iOS.
- Added authentication and enrollment timeout mechanisms. For fingerprint authentication, the timeout is 60 seconds. For eyeprint enrollment and authentication, the timeout is 20 seconds if an eye is not detected.
Mobile Data Collection Module:
- Android 2.1 and later. The Mobile Data Collection Module was tested on all supported versions from 4.4.4 to 7.0.
- iOS 6.0 and later. The Mobile Data Collection Module was tested on all supported versions from 8.2 to 10.
Mobile Authentication Module:
- Android 4.1.2 (16) and later. The Mobile Authentication Module was tested on all supported versions from 4.4.4 to 7.0.
- iOS version 7.0 and later. The Mobile Authentication Module was tested on all supported versions from 8.2 to 10.
Authentication methods include biometric authentication, transaction signing, and one-time password with push notification.
Note: For transaction signing, the Mobile Authentication Module supports version 8.2+ and 9.0+, and was tested on versions 8.2, 9.0, 9.1, 9.2, and 10.1.
For more information, see the Release Notes.
- RSA Adaptive Authentication (Hosted)
- RSA Adaptive Authentication (Cloud)
- RSA Adaptive Authentication (On-Premise)
For specific version support, refer to the appropriate product documentation.
Register to download the product package and documentation from RSA Link at https://community.rsa.com/docs/DOC-41815.
For additional documentation, downloads, and more, visit the RSA Adaptive Authentication page on RSA Link.
RSA has a defined End of Primary Support policy associated with all major versions. Please refer to the Product Version Life Cycle for additional details.