Executive Summary

Device users are now burdened with tracking logins and passwords across the many sites they use regularly. Some users cope with this by reusing the same password for more than one site. When hackers compromise one site, they can try to unlock accounts on a different site with the stolen passwords.

Cleaning up the damage from unauthorized access is both costly and time consuming. Samsung provides an alternative to the traditional password with Samsung Pass.

Samsung Pass is the first user-security product which takes advantage of the biometric authentication features of the newest Samsung devices to help users get away from the less-secure passwords. Instead, users can rely on biometric measurements such as a fingerprint scan or an iris scan to authenticate their identity.

These are very quick and convenient operations which users prefer to the traditional login and password authentication method.

These are very quick and convenient operations which users prefer to the traditional login and password authentication method.

An internal Samsung usability-study showed that users are excited about the new biometric technology and are willing to switch authentication methods if they have the choice.

Consequently, apps which offer the option to switch will garner user enthusiasm.

Samsung provides a Samsung Pass SDK to our enterprise partners so they can develop innovative ways to offer their users secure and frictionless experiences.

Samsung also provides cloud-based information which both an enterprise app and an enterprise server, can check to independently verify the integrity of the authentication information.

Thanks to a clever exchange of certificates, an opaque identifier, an authentication token, and FIDO™ compliance, Samsung Pass provides the means to reliably authenticate the user’s identity without compromising user privacy or gaining access to enterprise data.

Note

Please email us at spass.sec@samsung.com for any questions.