What is KB token?
KB token (or mobile token) is an application, which is installed in the mobile phone and enables generating one-time passwords for logging and for signing transactions in KB24.
Mobile token operates in offline mode, which means that in the process of generating passwords it does not connect to any of banking systems and any text messages are not sent. Connection to internet is required only during downloading, activation and changing PIN in KB token.
Is it safe?
One-time passwords which are generated by the KB token are unique and assigned to particular transaction. By using the Additional Data Verification functions it is possible to check whether execute of transaction is reconcilable with disposition – it considerably reduced the risk of hacker attacks. Access to KB token is protected by the 6-digits PIN number which is granted by the User. PIN is not storage in the application and is not verified on the application – it means, even interception the phone and decoding application disallow to know the PIN number.
How to get started KB token?
Customers who use one-time passwords list or hardware token, can change authorization method in KB24 service any time, by using option ‘Aktywuj KB token’ in ‘Ustawienia’ bookmark.
In case the activation code was sent by bank Advisor, application should be downloaded and activated by using this code.
1.5.1 version is adjusted to standards of Bank Zachodni WBK S.A.
Security Update – in connection with the above after first running of updated application, information about PIN hint change may be appeared and new flag will be showed.