3. Device Integrity
Layered
Security
Models
NOK NOK LABS 3
Device Keys &
Certificates
Crypto Engines
Trusted Execution Environments
Ç√
Secure Elements
Trustlet Trustlet Trustlet
Rich Operating System (e.g. Android)
OS Partition
User Partition
App
Sandbox
User
Partition
App
Sandbox
App
Sandbox
Overlay Services
App Stores
OS Integrity Services (e.g. Android
Safety Net)
Site and App Reputation/Integrity
Device and Cloud Data Managers
Filter what gets on
the device…
Isolate the apps…
Harden the device…
4. A Unique Opportunity
4
Hardware Integrity
OS Integrity
App Integrity
Network Integrity
User Integrity
Re-Architect Computing
Using Hardware-Based
Trust
Chain of Trust
Trusted Platform for Authentication
NOK NOK LABS
5. Nok Nok Labs | @NokNokLabs| info@noknok.com
JANUARY 19, 2018
Nok Nok Labs Customer Case Study Summary
6. SAMPLE VIDEO CLIPS
Nok Nok Labs Deployments – what we help our customers
achieve:
- NTT DOCOMO Demo Videos:
• https://www.youtube.com/watch?v=QzM4PpXEqP8
• https://www.youtube.com/watch?t=2&v=UP0DyYk5IXc
- Nok Nok Labs - How it Works
• https://www.youtube.com/watch?v=YcfGlLrSzQw
PRIVATE & CONFIDENTIAL 6NOK NOK LABS
7. NOK NOK LABS7
Solutions for Financial Services
• Founding Member of the FIDO Alliance
• 29% of payments made on the Mobile Device
Replacing passwords with biometrics for
Login • Transaction Confirmation • Mobile Commerce
With Nok Nok, we have seen lower fraud
rates and increasing spend. We are
seeing more spend, around 5 to 10%, with
no increase in fraud.
-- PayPal (internal)
8. NOK NOK LABS
Business Problem
• ID cards can be stolen, shared or copied. A more effective
method of validation for entry needs to be developed and
deployed to our global customer user base.
Must Haves
• Eliminate the replacement cost of lost or stolen cards
• Remote provisioning, allowing access to be set up in advance
of a user visiting a site
• Optional two-factor authentication for added security (PIN or
fingerprint)
• Reducing expenses with a subscription that allows for reissued
credentials.
Results
• Customers can use a mobile device just like an access card.
• They can store credentials for multiple sites.
• The have long range access with Bluetooth wireless technology
• PINs and fingerprints are stored on the mobile device, privately
and securely using FIDO.
https://security.gallagher.com/products/mobile-connect-app
Solutions for the IoT Industry
9. NOK NOK LABS9
Solutions for the IoT Industry
Integrating biometrics into physical access control points.
Replacing cards & badges with apps & smartphones.
• Global leader in Physical Access Security
• Over 1,000 employees worldwide
• Customers in 130 countries
• First FIDO engagement in the IoT Space
Gallagher customers require powerful access control
solutions. We’ve developed this strategic partnership
with Nok Nok Labs because of their deep roots in the
authentication landscape and their first-to-market
FIDO-based solution. This state-of-the-art, standards-
based platform will deliver a tremendous user
experience.
- Steve Bell, Chief Technology Officer at Gallagher
11. BENEFIT of a FIDO FRAMEWORK
Enabling Multifactor Authentication
Easy for developer, IT & END-USER
RIGHT LEVEL OF ABSTRACTION
11NOK NOK LABS
Something
I Know
Something
I Have
Something I Have
+
Something I Know
Or
Something I Have,
Who I am
…
Or
[Something I
Have, Who I am]
x2
…
TapTouch
SAME DEVELOPER API, SAME BACKEND, DIFFERENT POLICY
“Gold Server” Supports ALL (U2F, UAF, FIDO2)
protocols for maximum coverage of use cases