For software publishers

VaultysID eliminates the use of the traditional username/password pair in favor of authentication based on cryptographic keys. Using asymmetric cryptography, each user has a key pair: a public key, which can be freely shared, and a private key, which remains confidential. Authentication is achieved through digital signatures, where the private key is used to sign transactions or messages, while the public key is used to verify that signature. This method ensures robust security against interception and unauthorized access, as only the private key held by the user can generate a valid signature.

VaultysID transforms traditional identity management by adopting a decentralized approach.

Software vendors are well aware that the username/password model is on its last legs because it's easily hackable remotely. Any compromise is likely to compromise all access, since our login methods are now centralized. Furthermore, this login method generates a lot of frustration (lost passwords) for users and losses of time and revenue for vendors.

In contrast, with Vaultys authentication, each identity is decentralized to the user level, and instead of a single vault, the Vaultys solution allows for multiple vaults to be located at the user level. This method distributes risk and increases the system's robustness against cyberattacks by eliminating single points of failure. This configuration also ensures increased privacy, as users retain absolute control over their own credentials.

For the vendor, integration of the authentication module is facilitated with a Software Development Kit (SDK). Users can download VaultysID for free from the Apple Store and Google Play. VaultysID is designed to be integrated with a variety of devices, including mobile devices, smart cards, Fido2 keys, and other forms of secure tokens. This flexibility allows organizations to deploy VaultysID in diverse environments, ensuring broad compatibility and the ability to adopt enhanced security without disrupting existing infrastructures.

In addition to cryptographic key authentication, VaultysID supports multi-factor authentication (MFA), combining multiple forms of verification to increase security. This can include elements like biometrics, OTPs (One Time Passwords), or FaceID via Passkey, providing an additional layer of defense against unauthorized access. Additionally, at login, a double cryptographic verification is performed: the user acknowledges that they are connecting to your application and not to a phishing site, and conversely, the publisher verifies that the user has a valid authentication key to authorize the login.

With VaultysID, authentication becomes so strong that there's no longer any need for a password. The customer can no longer lose their password or inadvertently give it to a phishing site; they no longer have one! Each time they log in, the cryptographic keys of the publisher and the customer recognize each other by scanning a unique QR code.

Each client/user's cryptographic key is unique and stored on their device (smartphone, tablet, FIDO2, etc.). This unique key cannot be shared with other users and thus strengthens the publisher's management of authorized access. In addition, a connection history is kept at the user and publisher level.