Device Ownership

Overview - Device Ownership

Introduction

The "Device Ownership" section of our API documentation focuses on two primary methods of user authentication: the Link Based API and the OTP Based (One-Time Password) API. Both approaches are commonly used in online banking, payments, and high-risk events for multi-factor authentication (MFA) purposes. This section highlights the unique features and benefits of each method, empowering developers to make informed decisions based on their specific authentication needs.

OTP Based Verification:

The OTP API relies on delivering one-time passcodes via SMS, commonly used for MFA purposes. While SMS-based OTPs offer device and network agnosticism, ease of customer usage, and administrative convenience, they have known vulnerabilities, such as susceptibility to man-in-the-middle attacks and SIM-swap fraud.

You can read more detailed overview here :- OTP Basedο»Ώ . OTP based device ownership verification has below 2 APIs :-

  1. ο»ΏSend OTPο»Ώ - This API is used to send the OTP. Please read more about API in the document.
  2. ο»ΏVerify OTPο»Ώ - This API is used to verify whether the user has entered the correct OTP & confirms the posession of device. Please read more about API in the document.

Unique Features of OTP API:

  1. SMS OTP Delivery : OTPs are sent via SMS, providing customers with a familiar and accessible authentication method.
  2. Device and Network Agnostic : OTPs can be delivered to a wide range of devices and networks, ensuring broad compatibility.
  3. Customer Usage Ease : Users are familiar with the OTP delivery mechanism, making it straightforward for them to complete the authentication process.

Link Based Verification:

The Link Based API revolutionizes the SMS OTP approach by providing a more secure and user-friendly alternative. Instead of delivering a one-time passcode directly through SMS, Link delivers a secure SMS link message to the user's device. This link contains a one-time use, fortified passcode with a non-transferable token. The authentication process is carried out in real-time when the user clicks the link, ensuring a higher level of security and reducing the vulnerability to man-in-the-middle attacks.

You can read more detailed overview here :- Link Basedο»Ώ . Link based device ownership verification has below 2 APIs :-

  1. ο»ΏSend Linkο»Ώ - This API is used to send the link. Please read more about API in the document.
  2. ο»ΏCheck Link Statusο»Ώ - This API is used to verify whether the user has clicked on the link & confirms the posession of device. Please read more about API in the document.

Unique Features of Link Based API:

  1. Real-time Authentication : Link authenticates user identities in real-time when they interact with the link, enhancing security and minimizing exposure to potential threats.
  2. Fortified Passcode : The one-time passcode included in the link is fortified, making it more resilient against unauthorized access attempts.
  3. Non-Transferable Token : The token embedded within the link ensures that it cannot be transferred or reused, providing an added layer of protection.
  4. Phone Intelligence Signals : The API employs passive checks against phone intelligence signals to verify the identity of the mobile device receiving the link, further bolstering security.

Trust Score:

In addition to the Link Based API and the OTP API, our comprehensive "Device Ownership" API includes the powerful Trust Score API. The Trust Score API offers a unique and efficient method of identity verification, enabling you to assess the trustworthiness of a phone number with minimal information.

Trust Score API: With the Trust Score API, all you need is the phone number to initiate a Trust Score call. Our proprietary algorithm then analyzes carrier signals and leverages our managed identity intelligence to generate a Trust Score for the given phone number. The Trust Score is represented as a numerical value ranging from 0 to 1,000, where higher values indicate a more trustworthy entity. Furthermore, the API response includes reason codes, providing insights into the factors that influenced the Trust Score.

You can read more detailed overview here :- Trust Scoreο»Ώ .

Trust Score Attributes: Depending on the parameters passed in the API and the end-user mobile consent obtained, the API can return additional attributes used to calculate the Trust Score. These attributes offer more specific data and fields related to the phone number, enriching your verification process. Alongside the Trust Score, you have the option to access valuable line attributes that can be interpreted independently to establish further risk tolerance rules.

Key Features of Trust Score API:

  1. Minimal Information Required: Trust Score calls are initiated with just a phone number, streamlining the identity verification process and reducing user friction.
  2. Proprietary Algorithm: Our advanced algorithm consumes carrier signals and identity intelligence to generate accurate Trust Scores, providing a reliable measure of trustworthiness.
  3. Granular Scoring: The Trust Score is represented on a scale from 0 to 1,000, offering fine-grained results to evaluate user credibility effectively.
  4. Insightful Reason Codes: The API response includes reason codes, offering transparency into the factors influencing the Trust Score and enhancing decision-making capabilities.

By incorporating the Trust Score API into your "Device Ownership" solutions, you can leverage cutting-edge technology to verify the trustworthiness of phone numbers, enhance your risk assessment strategies, and fortify your authentication mechanisms. The Trust Score API complements the Link and OTP APIs, forming a comprehensive suite of tools for robust and secure identity verification.

Phone ID Intelligence

The Phone Number Intelligence API offers an advanced solution for assessing the risk profile of phone numbers. By submitting a phone number, businesses can receive a comprehensive analysis of each identifier's risk level. This service evaluates the provided information and generates a risk score, indicating the potential risk associated with the current transaction.

You can read more about this Phone ID Intelligence API here :- Phone ID Intelligenceο»Ώ

Here are the key features of the Phone ID Intelligence API:

  • Risk Scoring : Assigns a risk score to each phone number to assess its security level.
  • Reason Codes : Provides reasons behind the risk score to help understand potential issues.
  • Carrier Information : Delivers data on the carrier to ascertain the authenticity and reliability of the phone number.
  • Phone Status : Checks the status of the phone number (e.g., active, disconnected).
  • Line Type Identification : Identifies the type of phone line (mobile, landline, VOIP).
  • Location Data : Offers geographic information related to the phone number.

ο»Ώ

Did this page help you?
PREVIOUS
Database Coverage
NEXT
OTP Based
Docs powered byΒ Archbee