Oracle has introduced Oracle Mobile Authenticator, a token-based authentication application that enables organisations to cost-effectively provide strong authentication and prevent unauthorised access to vital company and customer data.

Removing the cost and complexity of purchasing and maintaining authentication solutions like smart cards and tokens, Oracle Mobile Authenticator combines user names and passwords with an additional layer of security at the device level, turning a user’s personal mobile device into an authentication device.

With Oracle Mobile Authenticator, companies can further secure their applications and data, while giving their workforce and customers the freedom to use their preferred personal device.

Oracle Mobile Authenticator runs on mobile devices, generating a time based security code, and a corresponding service that enable applications to accept soft token authentication.

By providing a single solution for stronger authentication and complete access control, Oracle Mobile Authenticator also allows organisations to use a single access management infrastructure for single sign-on (SSO), federated Web access control, fraud detection, token management and enterprise SSO.

In addition, the application enables organisations to utilise a wide range of second factors at no additional cost, including soft token generation, Google Authenticator and behaviour-based access.

Oracle Mobile Authenticator and Oracle Adaptive Authentication have been added to the Oracle Identity Management platform through the latest update to Oracle Identity Management 11g R2, which also introduced enhancements for cloud and mobile applications, as well as new features and capabilities.

Oracle Mobile Authenticator is available for download from the Apple Store and Google Play. Terms, conditions and restrictions apply.

Oracle Identity Management is a complete and integrated, next-generation identity management platform that provides breakthrough scalability; enables organisations to achieve rapid compliance with regulatory mandates; secures sensitive applications and data regardless of whether they are hosted on-premises or in a cloud; and helps reduce operational costs.

Oracle Mobile Authenticator and Oracle Adaptive Authentication provide a flexible way to deploy stronger authentication by offering the following capabilities:

* Behaviour-based access management, which detects fraud and anomalous behaviour, such as a user attempting to log in from multiple distant locations, a user logging in during non-working hours, or a user logging in from multiple devices.

* Step-up authentication and out-of-band authentication for access to highly sensitive transactions or data.

* Support for authentication via Google’s Authenticator.

* Soft token generation service to replace physical token devices and reduce costs.

* Support for the OAuth standard to allow sign-on via social media and cloud services.

“In today’s business landscape, mobile devices have become an extension of a user’s identity and provide a simple and powerful solution to address growing digital security risks,” says Amit Jasuja, senior vice-president of Java and Identity Management, Oracle.

“Oracle’s approach to strong authentication enables organisations to take advantage of the growing number of personal devices in the workplace while reducing the cost of authentication. Additionally, the new Oracle Mobile Authenticator application delivers the added benefit of fraud detection and reduced risk.”