September 1, 2023

Community update - End of August 2023

Greetings to our incredible community members! We're thrilled to have you join us for another exciting update on our journey. Here's what's been brewing in the world of DigiCorp Labs....

Greetings to our incredible community members!

We're thrilled to have you join us for another exciting update on our journey. Here's what's been brewing in the world of DigiCorp Labs.

As you might already know, we’ve reached out to our wonderful community members to help us test out the process for our DGMV-ID early adopter program. This is the final step before we invite everyone to be part of our security revolution!

Your collective wisdom and passion are remarkable. Every insight, suggestion, and moment invested in this journey will propel the evolution of the consumer version of DGMV-ID forward. Together, we're shaping the landscape of decentralized technology.

Now, let's dive into the heart of our endeavor.

What is DGMV-ID Passwordless Authentication?

In our digital world, accessing any digital platform begins with authenticating the device or user.

Web2 environments commonly use basic forms of authentication – such as usernames and passwords – with extra layers of security, such as 2FA, token authentication, biometrics, computer recognition, CAPTCHA and single sign-on.

The challenges of these methods lead to careless and improper use. Even when used correctly, we know that strong passwords with multi-factor authentication are still vulnerable to hacking – whether that’s due to inadequate safeguarding by the user or the organization.

No one likes using passwords. They understand the need for unique, complicated credentials, but we often struggle to remember them without writing them down, and often need to reset them due to forgetting.

As a result, many websites and services are implementing passwordless, decentralized login systems. Because while centralization is convenient, it often creates dependencies and lowers security – which is exactly why DGMV-ID is decentralized by design.

DGMV-ID provides passwordless entry to websites, platforms and services in Web3 environments, using multi-factor authentication (MFA) comprising QR codes and biometrics.

This challenge-response technique is based on the DigiByte Blockchain wallet (BIP39), and provides complete protection from account takeovers for both users and service providers thanks to key exchange and digitally signed messages.

What is the DGMV-ID Password Generator and 2FA Generator?

Next to passwordless authentication in web3 environments, DGMV-ID can also be used in traditional existing web2 environments, where the use of credentials (username and password) and additional factors of authentication (2FA) are still a requirement.
The DGMV-ID app generates unique, complicated passwords for all websites and platforms with password and username based login systems. All generated passwords are strong, deterministic and impossible to break with brute force.

While current password managers might create secure passwords, they usually store them, which creates an attack vector. DGMV-ID prevents this by generating new passwords for every login, so there’s no need to store them anywhere – not in the app or in the backend servers.

The DMGV-ID desktop browser extension transmits the password using ultra-secure one-time pad (OTP) encryption technology.

To use the password generator, all you need is the DGMV-ID mobile app and desktop browser extension. Service providers don’t need to change anything in their backend or websites.

Why should I use DGMV-ID 2FA instead of Google Authenticator?

Having 2FA integrated in the app means no need to switch to another application during the login process. Instead, DGMV-ID 2FA facilitates secure sharing of 2FA tokens between devices, with no need for centralized storage, QR code copying or writing down.

What’s the DGMV-ID Browser Extension?

The DGMV-ID Browser Extension displays QR codes that enable the creation of unique credentials for each individual webform. You must have it installed to use the Password Generator effectively on a desktop browser.

Underpinned by transport layer security (TLS), the extension communicates with a relay server to obtain the right credentials.

The browser also generates a one-time pad, which can then cryptographically derive multiple private keys, ensuring no third party can view sensitive information, and that only your extension and app share the encryption keys. The autofill function will then seamlessly complete the webform.

Chrome, Brave, Mozilla and Edge are all currently supported, with Safari on the roadmap.

When using passwordless authentication on a mobile web page, all you need to do is tap the QR code – no need to use the browser extension or scan the code.

What are the DGMV-ID Suite products?

Personal use:

  • DGMV-ID app
  • DGMV-ID Browser Extension

Business use:

  • DGMV-ID app
  • DGMV-ID Browser Extension
  • DGMV-ID Enterprise Dashboard
  • Additional Options:
    • DGMV-ID Identity Server  
    • DGMV-ID Multi-Tenant White-Label app version

Passwordless B2C integration:

  • DGMV-ID app
  • DGMV-ID Passwordless Backend Integration
  • Additional Options:
    • DGMV-ID Identity Server
    • DGMV-ID Multi-Tenant White-Label app version

What’s the difference between consumer and enterprise versions of DGMV-ID?

The mobile applications are the same, but the licensing terms, functionalities and tools are different.

In the enterprise application, everything is tailored for a business setting, with white-labeling, an enterprise dashboard, customized SLAs and support for OpenID Connect Federation. This is all about establishing trust and enabling single sign-on (SSO) between an organization's internal and external systems.

We will gather consumer feedback around the app’s usage during the initial rollout. Early adopters – such as DGMV token holders – will have the opportunity to provide constructive feedback and ideas for future development.

We’ll create a Google Form to collate feedback and suggestions, taking this input and using it to execute a successful consumer market launch in Q4.

How is the DGMV utility token being integrated into the DGMV-ID framework, and what advantages will this offer to token holders?

The DGMV utility token grants access to our intellectual property and unlocks specific features.

Prerequisites for using the token vary depending on the feature or installation, so we’ve implemented a structured licensing framework to provide clarity.

Consumers need a consumer license to use the password generator, but not to use passwordless authentication or two-factor authentication (2FA).

Enterprises need an enterprise license to access the dashboard and allow their workforce to use the password generator for designated endpoints. Organizations that want to boost security levels for federation with i.e. Azure AD or Okta must get an enterprise license for the integration of an Identity Server and use of an Admin UI.

Businesses that want to provide passwordless authentication through DGMV-ID for their web users will need a license for backend code integration, which will include consultancy, maintenance and support.

You can activate consumer licenses with either DGMV tokens or fiat currency. We will calculate the equivalent DGMV token value based on current market value.

80% of the token quantity will then be transferred and securely locked in a vault for a minimum of five years, with the remaining 20% allocated to a pool for future utility purposes.

With fiat currency purchases, DigiCorp will acquire the equivalent value of DGMV tokens from the open market. The tokens required to sustain the license for the subsequent months will be sourced from the Ecosystem wallet. This deflationary model will foster a healthier token ecosystem, benefiting both token holders and DigiCorp.

Token holders will be involved in deciding how DigiCorp should use tokens after their five-year lockup.

The Road Ahead:

We're elated to share the path we're charting for the future.

Q3 and Q4 highlights:

We’ve got some super exciting updates and developments planned for the coming months, including:

  • The launch of our DGMV-ID product page
  • Revamping the DigiThree and DigiCorp websites
  • Several community seminars for DGMV-ID
  • Starting the sale of DGMV-ID to the business customers
  • A presentation on green smart cities in Asia
  • The launch of our second product
  • Non custodial SSI wallet feature
  • Productization of the MDM SmartLayer
  • Strengthening our strategy for community incentivization and engagement
  • Addressing outstanding matters and inquiries pertaining to the LCX hack

Concluding note:

That’s all for now. We hope that update has left you feeling informed and inspired about what’s to come for DigiCorp! We’re excited about the progress, and our team is dedicated to continuing our journey of innovation. Stay tuned for more updates, coming your way soon.

Best regards,
DCL team

Article written by DigiCorp Labs