passQi vs UNLOQ

Intelligent password management and next-level Multi Factor Authentication

passQi provides both an intelligent password management mobile app and a complementary server-side solution called mFactor to implement a proprietary Multi-Factor Authentication login for WordPress and other websites. The app can be used as a stand-alone product, or in concert with the mFactor solution.

The passQi 2 app provides the highest level of security by storing information exclusively in the user’s smartphone vault, a single tool that goes everywhere. One-time keys securely encrypt relayed information via the cloud and are never passed through the network or shared with another device. passQi 2 is designed to work seamlessly with nearly any site on the Internet and offers an optional automated TOTP support alternative to Google Authenticator.

passQi mFactor goes beyond Two Factor Authentication with a simple WordPress plugin or custom library for other platforms without changing the existing authentication flow. passQi mFactor offers superior security with two layers of encryption – from different sources – required to reconstruct the underlying token for login. passQi mFactor allows the site authentication to determine definitively that the user was in possession of their smartphone device at the time of authentication with the optional touchQi support, verifying the owner’s fingerprint (for devices with biometric capabilities).

Making strong authentication as it should be. Simple&free

UNLOQ comes in the shape of a widget, which you can easily embed into your site, and a companion mobile app that your users will need, in order to authenticate. The default authentication mechanism is a multi-factor system that uses out of band communication to authenticate a user. After a user has registered with UNLOQ (downloaded the app and created a profile), he will only have to click the UNLOQ button and, in a fraction of a second, he will receive a push notification on his mobile phone, asking the user to approve or deny the authentication request. To prevent spam, each user will be asked to verify his/her identity when sending their first authentication request from a browser. For the first authentication request, the user will receive a notification asking for a time-based one time password that they can find in the app.

And this takes us to the alternative authentication methods that UNLOQ allows. The first one is a time-based one time password that users can select, in case they don’t have internet access on their phone. The second one is the e-mail login option that can be used in case the user does not have a smartphone. Developers may choose to have one, both or none of the alternative authentication mechanisms implemented, depending on the specific case for which they are building the system for.