Unified Login

eSignet offers a convenient feature called Unified Login, which allows users to access applications and various services through a single interface thus eliminating the need for multiple logins. Additionally, eSignet enables seamless login to any government service by utilizing a single credential through the existing ID repository.

Password-less Authentication

eSignet implements a password-less login method that leverages authentication factors supported by our system. This approach enhances security by mitigating the potential risks associated with password-related security vulnerabilities, such as weak passwords, password reuse, and phishing attacks.

Support for various Authentication Modalities

OTP Authentication

OTP authentication offers an additional level of security due to its short validity period. When logging into eSignet with OTP as the chosen method, our system generates a unique OTP and delivers it to the user via a registered communication channel, such as SMS or email. Upon receiving the OTP, the user can input it into the login interface. The system then compares the entered OTP with the generated one. If they match, the user is granted access to the system.

Biometric Authentication

eSignet can connect to any biometric device that complies with IEEE P3167 SBI 2.0 standards, perform secure biometric capture, and enable authentication against an underlying ID system that can perform biometric authentication.

Wallet-based Authentication

Mobile wallet-based authentication can be utilized to scan a QR code and finalize the authentication process using the previously activated credentials for online login. Additionally, facial authentication can be performed on the wallet to verify the presence.

Knowledge Based Identification

eSignet has expanded its authentication options to include Knowledge-Based Identification (KBI) as one of its factors. With eSignet's integration capabilities, existing ID repositories storing user-specific details can now be easily integrated with eSignet thereby enabling service providers to authenticate users.

Below are some of the FAQs on KBI:

Verifiable Credentials

Verifiable credentials (VCs) are digital representations of physical credentials like passports or licenses. They are digitally signed, making them tamper-resistant and instantly verifiable. Issued by trusted entities, VCs are stored in digital wallet apps and used by individuals to access various services.

Consent

User consent refers to the voluntary and informed agreement provided by an individual, often referred to as a user, to a specific action, process, or request. Users should have a clear understanding of what they are consenting to. User consent is particularly important in the context of data privacy, where it is required in many jurisdictions for organizations to obtain explicit consent from individuals before collecting, processing, or sharing their data.

Consent mechanisms are often used in the form of checkboxes, pop-up notifications, or consent forms on applications to ensure that the users understand and agree to data processing practices. eSignet stores the consent in a built-in consent registry which is specifically designed to store user consent on claims and scopes that are requested during the first login into a relying party's application using eSignet.

Identity Assurance Flow(eKYC verification)

eSignet has been enhanced to integrate the OpenID Connect (OIDC) protocol extension for identity assurance and verification metadata, enabling a video-based eKYC verification process during user sign in. This enhancement allows relying parties (e.g., banks, insurance companies, and other regulated entities) to authenticate users and verify their identity claims with a high level of confidence, combining video verification with traditional methods like document scanning and biometric checks.

OpenID Connect Assurance Extension

• Verification Status: Whether the claim is self-asserted or verified (e.g., by government-issued IDs, document validation, or biometric checks).

• Verification Process Details: Information about who and how the claim was verified, such as the trust framework, process, and method used (e.g., in-person document check, video verification, or biometric validation).

• Assurance Level: The level of confidence or trust in the claim's accuracy.

This extension is particularly useful in scenarios requiring strong identity verification, such as eKYC (electronic Know Your Customer) processes in regulated industries like banking and finance.

Claim level status

Based on the request for verified claims, eSignet displays fine-grained details for each claim about its availability and its verification status to the end user. With this, the end-user is well informed about the claim details and is enabled to go through the verification process or deny the request.

Language Support for eSignet

The eSignet user interface (UI) offers comprehensive language support to facilitate effective communication. By default, eSignet includes language bundles for Arabic, English, Hindi, Kannada, and Tamil. Moreover, it can be easily customized to incorporate additional languages as necessary to accommodate specific country requirements.

Furthermore, eSignet has undergone meticulous testing to ensure seamless compatibility with right-to-left (RTL) languages. This means that users can rely on eSignet to confidently navigate and interact with RTL content.