Salt Mobile Tokens

Salt Mobile Token solutions leverage the ubiquity, computing power and familiar form factor of the mobile phone handset to provide a convenient, secure and “always at arms reach” solution to second factor identity authentication and digital signing needs.

Salt Mobile Tokens (172KB)

Salt Mobile Tokens implement the full characteristics of specialised two factor tokens and specifically:

  • Application level PIN based access control to ensure rightful possession of the authentication device, a feature missing on the overwhelming majority of second factor devices shipped to date globally
  • Onboard cryptography for message encryption and generation of challenge response or digital signature for true end to end security.
  • Streamlined LOW COST high assurance provisioning and customer activation of the authentication service not available in specialised token based solutions.
  • Salt Mobile Tokens operate independently of the underpinning mobile network provider and are fully integrated with leading authentication services to provide a cost effective solution to identity authentication particularly for large consumer bases.
  • Salt Mobile Tokens can be configured in a number of ways to meet the specific needs of the business application.

Salt mCode OTP

mCode is a standalone PIN protected token capable of One Time Password, Challenge- Response or Signature operations. mCode supports the OATH standards.

Salt mCodeXpress OTP

mCodeXpress is used in conjunction with Salt RADIUS+ to provide OTP only capability for user authentication.


Salt SMS OTP is an entry level solution that delivers OTPs to a user’s SMS in-box as required by the application. There is no phone based PIN support for this product.

Salt mSign

mSign is a high assurance token which provides “what you see is what you sign” capability. When using Push Technology mSign requires mobile connectivity for authentication operations. When using secure QR Code Technology mSign can operate standalone without mobile connectivity.

mSign Connected Token
mSign Connected Token is an electronic authentication solution that allows organisations to provide a channel agnostic method of validation of the authenticity of access requests and transactions.

Salt Mobile Token Integration Options

Salt Group offers three paths to Mobile Token integration:

SafeSign Authentication Server
Salt Mobile Authentication Token support is fully integrated with Thales SafeSign Authentication Server, which may be purchased through Thales’ sales offices or from Salt Group in Asia Pacific.

For rapid, low cost deployment of basic mobile OTP functionality, Salt Group offers RADIUS+ Authentication Server which supports the use of mCodeXpress and Salt SMS OTP tokens.

User integration through Salt Mobile SDK
The capability of Salt Mobile Tokens may be integrated into alternate vendor or end user platforms using the Salt Mobile Software Development Kit (SDK).

Supported Devices

Salt Mobile Tokens operate on a wide variety of handsets and devices from iPhone, Android and BlackBerry to older Symbian devices.

  • Apple iPhone, iPad tablets, and iPod Touch devices
  • Android (2.2 and above) operated mobile devices
  • Windows Phone 8 devices
  • BlackBerry 10 smartphone devices
  • Java-enabled (MIDP 1.0 and above) Symbian devices from Nokia, Samsung, Sony-Ericsson, LG Motorola. Salt mSign and Salt mSign Remote support MIDP 2.0 and above handsets.

Salt Mobile Tokens are available through the Apple iTunes App Store, Google Play Store, Windows Phone Store/Marketplace, BlackBerry App World and Nokia OVI Store.

Networks Supported

  • Salt Mobile Tokens are independent of handset manufacturer, mobile network carrier and mobile service provider; and have been certified on GSM, 3G, 4G and CDMA networks.
  • Salt Mobile Tokens utilise Push Technology from Apple Push Notification Service (APNS) and Google Cloud to Device Messaging (C2DM) Push Services; and binary SMS on older Symbian devices.