MIRACL helps organisations replace insecure passwords, expensive SMS and complex Multi-Factor Authentication (MFA) with a simple, highly secure, MFA login service that works on every Desktop, Mobile or even Smart TV.
Priced at 1/4 to 1/40th of the cost of SMS Texts, with no user charges or other hidden costs, you can afford to replace passwords and SMS text authentication on any application or web service – large or small, enterprise or B2C.
With record breaking authentication times of less than 3 seconds and user error rates as low as 1/10th that of passwords, you will have a positive impact on user conversion, engagement and attrition, whilst reducing your support overheads and security breaches.
A combination of user friendliness, hardware independence and low cost make it possible to deploy strong MFA and secure Single Sign On (SSO) services where it was previously impossible or impractical.
Arrange a demonstration – https://calendly.com/miracl/demo
Share
Main office address
71-75 Shelton Street,
London,
WC2H 9JQ
Key Products / Services / Sectors (USPs)
MIRACL’s products and services are purpose-built to improve employee efficiency and avoid frustrated customers. Our authentication services are secured using the latest Zero Knowledge Proof (ZKP) protocol and Elliptic Curve Cryptography (ECC) technologies that we’ve licensed to the US Air Force, Google and Intel and block 99.9% of attacks including Credential Stuffing (Bot Net), Password Spraying, Phishing, Man-in-the-Middle and Replay attacks.
All of our products are designed to operate in a stateless mode, meaning there is no requirement to share GDPR or PII data with MIRACL and no additional work to maintain databases or synchronise users between different systems.
Integration to your service can be completed in hours using standards based protocols, or for a seamless user experience, deeper integration can be accomplished through the use of APIs and SDKs. Services can be deployed using SaaS, Hybrid, Private Cloud and On-Premise infrastructure.
To understand the advantages of MIRACL Trust ID, we often use SMS based authentication as a common frame of reference:
· SMS OTP authentication: cost 4 pence per use (AWS Cognito UK Pricing), requires a mobile, has well documented security issues, requires credentials (password), 5 or more user steps, 30+ seconds to complete, has a 25-50% interruption rate
· MIRACL Trust ID: as low as 0.2 pence per use, no hardware required, secure multi-factor authentication, passwordless, 1 user step, 2-3 seconds to complete, has a 1-3% interruption rate
Find us on G-Cloud 12
https://www.digitalmarketplace.service.gov.uk/g-cloud/supplier/712617
https://www.digitalmarketplace.service.gov.uk/g-cloud/services/109292737368102
https://www.digitalmarketplace.service.gov.uk/g-cloud/services/882234962560443
MIRACL Trust ID:
The authentication service eliminates the threat of password or credential database breaches, as it stores no password or authentication credentials which internal or external actors can compromise. Consisting of authentication and federation APIs and services, MIRACL Service federates multi-factor authentication through the use of the OpenID Connect (OAuth 2.0 specification) and/or SAML federation protocols.
MIRACL Trust Proof:
The cryptographic signing service is used to digitally sign any transaction (ie. payment), user action, data transfer or Machine-Machine interaction to make it irrefutable. Authenticity of action can be proven due to the immutable, non-reputable nature of the signatures.
MIRACL Trust SSO (Single Sign On):
Combines multi-factor authentication as a service with Single Sign On (SSO) into enterprise applications, with a unique solution that leverages cloud-based authentication together with an SSO gateway. This architecture needs no access from the cloud to Customer’s user directory: no replication of Customer’s AD in the cloud, no third party gaining access to Customer’s company data. With all the benefits of the password-less ZKP solution.
MIRACL Trust OTP (RADIUS):
Increase the security of password authentication without altering the legacy client and server products. One Time Passwords (OTP) are used to replace static passwords in applications like VPN clients, SSH clients, remote desktop and so on.
Services
Supports eID
Yes
No
Area of focus
Consumers
Internal services (enterprise)
Identity provisioning (IdP)
As-a-Platform
API
As-a-Service
Wallet/SDK
Hub
On-board RPs
Offer translation of protocols
Handles federation
Integrate RPs/IDPs/Wallets
Can offer consent capture if required
Attribute brokerage
Can capture self-asserted
Can verify self-asserted
Can integrate with third parties (eg Open Banking)
Supports verified claims (VCs)
Verification services/support
Not supported
N/A
Yes – third party verifiers used (including Open Banking)
Yes – In-house verification service
Authentication
Password/username
Multiple factors (MFA)
Biometric
FIDO
Mobile device
Other
Data store functionality
Attribute storage
Attribute sharing
Configurable for specific sectors (e.g. health)
Use decentralised stores (eg Wallets or online)
Can offer consent capture/handling
Account management for users
Yes
No
On request
Account recovery
Self-service
Help desk
Key management required by user
Channel support
Omni-channel
Web
Mobile
Digital assistant
Wallet
Other
Protocol support
SAML 2.0
OIDC
Oauth
UMA
DID (decentralised identifiers)
Third party capability
External
Internal
Other
Other
Risk-based authentication
Anti-fraud support
Data minimisation support
Consent management
Variable registration (multi-user journey support)
Support for accessibility
Logging and audit
Billing system
User Journeys
Self-service
Offline options, incl. F2F
Upgrade paths to increase assurance levels over time
Creation of delegated accounts
Rules
To modify system behaviour
For risk-based authentication
To use events to drive transactions
To manage user journeys, including verification
To handle LOA upgrades/downgrades
API available
Yes
No
Wallet-based systems
Wallet available
SDK available
Decentralised
Handle payments
Handle identity document’s (eg drivers license)
Handle health information (eg vaccine certificates)
Other
Testimonials
“Protecting the person online and giving them a good user experience of the services they are using is a key goal for us as a business. MIRACL is a pioneering company that helps us achieve that”
Nick Mothershaw, Former UK&I Director of Identity and Fraud, Experian
Clients




