ADUCID steers away from the use of conventional usernames and passwords—while accessing a service online— and provides a universal ID for both public and private sector services, without limiting itself to governance or finance functions. Built on a distributed architecture, the company’s eID authentication app, Peig, draws merits from the patented innovation PersonalCodeTM, which authenticates users from any device for all applications in an ecosystem of services.
One of the merits derived from this architecture is secure account recovery – a process that often proves to be cumbersome for end-users. For instance, people in general, are accustomed to a specific set of standard procedures while interacting with the username-password-based authentication services. If one were to lose their password, he or she would eventually retrieve it from the email service provider by following the corresponding password retrieval protocols; this set of protocols could likewise apply to any service hosted online. As they are managed by users themselves, such password backup scenarios increase the clutter associated with maintaining the relevant accounts of users by creating a significant number of security vulnerabilities. “If you lose the authentication means of any kind, it’s difficult to prove that this account actually belongs to you. How do you securely prove that your old account is, in fact, your account? How to issue a new authenticator to an existing user? Can this be delegated to another service? An email? How secure is this email?” elaborates David. “A plethora of such questions arise along with potential vulnerabilities when we interact with traditional authenticators.”
ADUCID circumvents these vulnerabilities and many such advanced complications by enabling users to back up their identities on any of their personal devices such as a laptop, iPad, or another smartphone. Such a decentralised approach to validating one’s identity through a myriad of devices dramatically improves the accessibility, applicability, and security of data exchanged through these services. It also allows the user to retain access to the aforementioned online services on other devices, negating the need to reauthenticate one’s own identity.
Secure identity is no longer a burden that users have to deal with; it’s applicable for all online services
This Architecture exemplifies David’s remarks on the evolution of security from a static framework to a dynamic one, wherein, identity authentication is independent of the hardware components on a device. The ADUCID team has perfected such an architecture through a novel mechanism of safeguarding cryptographic elements utilised for the authentication of identity on any device, without the need for any specialised hardware. The company, along with its technology stack, upholds the highest standards for privacy and compliance - eIDAS, GDPR, PSD2, NIST.
“Through our decentralised technology, we ensure that secure identity is accessible and usable not only for government or financial services but also for common services and privileges,” substantiates David. “Secure identity is no longer a burden that users have to deal with; it’s applicable for all online services.” ADUCID, with this Universal ID, aims to bring in ultimate security without compromising on applicability and user-experience. Such an approach enhances the interoperability of online services, all the while benefiting remote registration and IoT communication functionalities within the ecosystem of services.