Our Mobile App Issues Free Digital Authentication Tokens To Anyone With a Valid Email Address
For IOS and Android
Available for Android in Google Play Store
Available for iPhones in iOS App Store
Also available in Amazon App Store
HexaEight Mobile Application allows any user having a valid Email Address to register with our Platform. Upon successful verification of the Email Address, an Email Digital Token is issued which is stored in the Mobile Application. Users can use the Digital token to scan HexaEight QR Codes to login to any Website or AI Powered Application that integrates with HexaEight Authentication.
How To Download Our Mobile App?
Captcha Tokens provide one-time access codes when configured to point to a token server. You can create Captcha Tokens for multiple token servers by entering the server's URL during the setup process.
In some cases, you may be asked to configure the token server address without using HTTPS. Rest assured, this is completely secure because our patent-pending technology ensures safe communication between the token server and the mobile application, without relying on HTTPS for encryption.
Remember you can always visit the http(s)://tokenserverurl/api/resourceinfo to get the identity information of the Token Server.
Resource tokens allow owners and developers to configure machines to work with HexaEight products.
If you are a developer or machine owner needing to install the HexaEight Token Server using a domain name, you will require a valid resource token to complete the verification process.
Please note that to add a domain resource token to your email vault, your email address must belong to the same domain or parent domain. Additionally, you need the ability to verify the hostname by adding a TXT record to your domain's DNS server.
Our mobile application allows end users to create a Digital Token using just their email address. However, this alone is not sufficient to verify their identity. To establish identity, users can submit identity verification documents through our app for review.
For users in India, we accept Aadhaar Offline Zip file linked to their email address as well as Passports. For users in other countries, we accept passports or other digitally signed documents for identity verification.
By completing the ID verification process, the photo in your ID document will be automatically linked within your user profile. This enables you to verify your identity to third parties by simply displaying your user profile through our application. Additionally, if you've activated our deep fake detection technology to protect your photos and videos, your profile photo will be shown to others when they verify the integrity of any media you've shared. This allows them to confirm authenticity without revealing your email address. Keep in mind that your Digital Token is linked to your photo, so any attempt to tamper with the image will prevent access to your Email Vault.
Remember we will request a video meeting to confirm your identity. Once your documents are submitted via the app, you can proceed with an ID verification request using the button below.
Follow the below Steps to upload your ID documents for verification.
In your vault page, Tap on the + symbol next to authentication tokens that would popup a list of choices
Choose ADD A PHOTO IDENTITY OPTION. In the subsequent choices,
Choose Password Protected Zip file if you are uploading a Digital Identity document like Offline Aadhar zip file or something similar.
Choose Image Document in case you are uploading a scanned photo of your identity document.
Choose Scan Document in case you wish to scan your identity document.
In the next section, based on your choices, you will be asked to upload your document and take a selfie. Upon Document submission, you will get a reference ID that can be used to request for ID verification using the below button.
Note: For India users, we do not use your Offline Aadhar zip file to perform Aadhar number verification, nor do we need you to disclose your Aadhar number. We will only use the email and photo available in the offline zip file for verification
Once you have completed the ID verification process, you will need to delete your existing Email Digital Token and follow the same process of creating a new Digital Token. Before setting your password, make sure to add your zip file or image artifact to your Vault by tapping on the (+) button as shown in the image. This will allow your photo to be retrieved and added to your profile.
If you used an offline zip file for verification, keep it safe and ensure you add it each time on any mobile device where you create your Digital Token. If your ID verification was completed using a passport, you will receive a profile picture that must be uploaded using the image artifact to set your profile picture.
If you lose your offline zip file or the profile picture provided by our support team, you will need to re-submit your documents and initiate a new ID verification request.
Note: Users providing Aadhaar zip files do not need to request ID verification for their first attempt to add their profile picture. However, subsequent changes will require the ID verification process to be followed.
Frequently Asked Questions
1. How Is Our Mobile App Different From Other Authenticator Apps?
2. How Do I physically Verify the identity of another email user using our Mobile App?
a) Alice opens HexaEight Mobile App and Taps VERIFY IDENTITY button located in the Home Tab.
b) Alice choses, YES when prompted for a new Identity Token. She is shown a QR Code
c) Alice shows (or transfers) the QR Code to Bob and asks him to scan the QR Code using his Digital Token associated with his email address
d) Bob scans the QR Code using his Digital Token associated with his email address and if the process is successful is shown a response QR Code which he shows (or transfers) back to Alice.
e) Alice taps the back button on the mobile and uses the scanner app to scan the QR Code given by Bob.
f) Upon Scanning the QR Code, If Bob's email address is valid, Alice will see a success message on her mobile along with the email address thus completing the verification process.
NOTE: Alice and Bob can share the QR Code through any channel and complete the verification process.
3. Is it possible for a automated bad bot to use HexaEight Authentication and still login and mimic a human user?