No more smartcards or additional devices. If you’ve got a smartphone integrated with the Jiffee engine, you can authorize your signature on any document - securely and digitally. The authorization mechanisms are based on one-time codes. mSzafir is the first commercially available digital signature mobile application using the Jiffee engine. This is the story of its development.
More and more Polish mobile users – almost 14% of them – now use their smartphones to handle administrative matters. It’s the latest step in the development of mobile services, and not just banking services (already used by every second adult in Poland). The new Polish e-ID has already been released. It works in mobile devices, so you no longer need to carry a plastic ID card around with you. But there’s a need to take things one step further. If you can use a smartphone to identify yourself, why not use it to authenticate transactions and sign documents electronically?
KIR, the Polish National Clearing House, is a key entity in the Polish payment system infrastructure and a qualified trust service provider. They provide Szafir - a standard qualified signature solution and were looking to adapt it to meet the challenges of today’s mobile society. That’s where Neontri and Jiffee came in.
mSzafir is a fully remote version of the Szafir qualified electronic signature KIR was already offering, which involved affixing an e-signature using a cryptographic card and a reader. Thanks to mSzafir, you can authorize signatures using any iOS or Android device. All you need is the mobile application for two-stage identity verification prepared by Neontri to authorize access to your user’s key pair.
The solution has been integrated with the existing process and offers customers a new, simplified process of signing documents digitally.
Two Neontri products were used in the mSzafir project: Mobile Banking Framework and Jiffee. MBF is a programming platform that allows secure mobile applications to be built quickly. Jiffee is well-known as a Bluetooth-based payment solution, but it’s also a technological platform for the strong authentication (SCA) and authorization of operations, based on one-time codes.
With mSzafir, you can sign the most important official documents without using a reader and cryptographic card, and it works on any device: smartphone, tablet or computer. After you have generated the certificates and key pairs, all you have to do is rewrite the one-time code from your mobile device to confirm your identity. Simple? Quick? Exactly!
After you have generated the certificates and key pairs, all you have to do is rewrite the one-time code from your mobile device to confirm your identity. Simple? Quick? Exactly!
The mSzafir mobile app had its official launch at the end of March 2020, and was enthusiastically received from the word go, with a rating of more than 4 out of 5 points in the App Store and Google Play.