Mediscs : « The electronic signature, effective and the way of the future »

Mediscs offers mobile program solutions. Do they match the needs of all types of authentication users?
Mediscs is a publisher of specialised IT security software. It can respond to the needs of all types of client, even the most cutting-edge, particularly in terms of strong authentication, electronic signature and 3D secure payment. Its solutions have been specifically created for internet users and not just adapted. Each one corresponds to a market. This is because it is unrealistic to offer a single product that is the same for everyone, for our two distinct target markets; businesses and home users. The solutions that have existed for years, « OTP, Calculette CAP, SMS etc... », have proved insufficient : on the one hand because they are not suitable for mass deployment, and on the other hand insufficient in terms of security in the face of the growing number of attacks, and they have lost a lot of credibility. In fact, they do not resolve the problems of phishing and man in the middle.

OK, but what do you offer?
Mediscs, as a means of secure data access, offers the electronic certificate. Today it is the only recognized and proven means. However, in order to achieve successful mass deployment, there are several determining factors : ease of use (automatic and transparent use of the electronic certificate), security (with an encrypted safe, against phishing and man in the middle), and a low implementation cost.

Does the material provide more security than the software?
The two are indissociable. For the security to be adapted to the threat, two principal elements are necessary : What we have (the material) and what we know (the PIN code). The material (USB key, CD card, IPod, telephone with mass storage) all responds perfectly to the Mediscs solutions. Each user can choose to download his or her own secure and personalised application (TOOAL ASP, or K.ACCESS solution), in a few seconds. Once the mobile device is configured, the user can carry out secure financial operations form any PC anywhere in the world. No prior installation is required and no trace is left on the computer after use.

Why opt for the electronic certificate as a means of authentication?
All the Mediscs R&D has been orientated towards the creation of secure solutions based on the electronic certificate. Before we began our research, we examined the products that were on the market (OTP, SMS, Token, Calculette CAP etc...). Conclusion : these solutions do not address the needs of the individual customer. Clearly, our analysis was not incorrect. Today, none of these processes has proved entirely successful. That is why Mediscs has created solutions that include the ingredients needed for mass individual user deployment, and in particular with the electronic certificate, which is the only proven and recognized « security tool » for reliable secure access to personal and sensitive data. To this we add perfectly automated and fully transparent use the electronic certificate for the internet user.

How and in what form ?
The difficulty of implementing the electronic certificate in mass markets is its complexity for the user and also the infrastructure that has to be set up, called a strong authentication solution for the average internet user, and from home, must be as simple as possible. Mediscs has therefore created program bricks adapted for ultra-easy use, with appropriate security against threats (phishing, pharming, Man in the Middle), at a low cost in relation to the quantity. Our solutions can be used on standard USB keys, CD cards, IPods, mass-storage mobile phones, according the customer’s chosen format. The panel of models is very wide : downloadable at a distance, face to face distribution, configurable on site, or configured and personalised with the Mediscs production line etc... It’s all part of our service.

What added value for the electronic signature ?
When a private user has to engage in legal responsibility, when taking out a bank loan or an insurance policy for example, the contract has to be signed. There are two forms of signature that are legally valid : a handwritten signature or an electronic signature, always based on the use of an electronic certificate associated with the user. With its solutions, Mediscs enables the electronic signature thanks to the user’s certificates. In this way, services on demand and financial products for the general public will allow exponential new markets on the net. Mediscs is currently the only French company that deploys mass secure electronic certificate solutions for individual « banking customers ».

Interview by Ange GALULA

Télécharger le PDF