M-Pin logo

2-Factor Authentication

Download the Open Source code

Simply complete the form below to get started with your M-Pin Platform and to stay up-to-date with all the latest developments.

Get Your
M-Pin Platform here!

M-Pin™ Strong Authentication Platform

M-Pin™ Strong Authentication Platform enables true two-factor authentication, based on the open source M-Pin™ Authentication Server.

The M-Pin™ Authentication Server uses just one leak-proof cryptographic key, and can't reveal any information about your users such as identity or login details, even if the key is compromised.

The M-Pin Client is an HTML5 browser, so no client software installation, distribution and maintenance are required.

The M-Pin Mobile application provides out-of-band authentication through an HTML5 web application, compatible with market leading mobile OSs.

What's New in M-Pin 0.2.0?

M-Pin version 0.2.0 is designed to work in the new M-Pin Trust No One architecture. This is architecture, designed to distribute trust between CertiVox and their customers, results in eliminating single points of failure present in other systems such as PKI.

CertiVox hosts a Distributed Trust Authority node (D-TA), CertiVox D-TA, while an independent D-TA node runs at the customer's premises, Customer D-TA.

Additionally, the M-Pin Server v0.2.0 includes a Web ID (WID) generator. This identifier allows out-of-band log in to a host PC browser, while performing the authentication from a registered mobile device, using M-Pin Mobile. This is the WSID server.

M-Pin Server v0.2.0 also includes a one-time password (OTP) generator, for enterprise customers who wish to eliminate username/password databases whilst maintaining compatibility with all legacy systems and applications in their enterprise environment.

deployment model2

M-Pin Server is designed to bear as little state as possible. It remains a pure authentication server, with the addition of a D-TA node and a one-time password generator.

All the logic to manage the D-TA node and the OTPs is implemented on the relying party application; such logic can include end users' verification and revocation, OTP sync and integration, web logic and integration with the enterprise users' directory.

M-Pin Arion is CertiVox intelligent application for the enterprise to integrate M-Pin Authentication Server with legacy applications relying on Radius authentication (VPN, HDV, SSH etc).

M-Pin Authentication Server includes a relying party web application, implementing the web logic to manage M-Pin Mobile out of band authentication, using the M-Pin Mobile web app, and host PC authentication. It is an example of how to leverage the M-Pin Authentication Platform features, and its modules can be reused and integrated in existing web sites, portals and any other web based authentication interface.

Check the quick start guide to learn how to download and install M-Pin Authentication Server and experience the full M-Pin Strong Authentication Platform in minutes.

The CertiVox M-Pin Client and Server Libraries are free software: you can redistribute it and/or modify it under the terms of the BSD 3-Clause License: http://opensource.org/licenses/BSD-3-Clause as stated below.

You can download the source code from here from GitHub.


Check our documentation page for a quick start guide, FAQ and glossary.

Demo and examples

Our demo provides a taste of the user experience with M-Pin PIN Pad.

Code reference

Check our GitHub repository to download our source code. Each library contains a code reference guide, and the Service API code reference for a description of the interaction with CertiVox D-TA. Also check the documentation page for more information.



Copyright and License

© 2014 CertiVox UK Ltd., All Rights Reserved.

The CertiVox M-Pin Client and Server Libraries are free software: you can redistribute it and/or modify it under the terms of the BSD 3-Clause License http://opensource.org/licenses/BSD-3-Clause.

For full details regarding our CertiVox terms of service please refer to the following links: