Skip to content
BlokSec Docs

FAQ

1) What is BlokSec Immutable Authentication?

Section titled “1) What is BlokSec Immutable Authentication?”

BlokSec provides the most secure authentication service based on digital signatures and immutable ledger technology. Breaking down barriers between cybersecurity, identity, and device management, BlokSec fundamentally changes the way users log in without passwords, providing a frictionless multi-factor login experience. BlokSec provides the zero-trust access needed to secure hybrid work environments, ensuring that trusted users and devices are accessing critical resources on-premises or in the cloud. The innovative BlokSec service architecture replaces passwords with digital signatures and consent-based authentication/authorization leveraging Elliptic Curve Digital Signature Algorithm (ECDSA). Businesses leverage BlokSec to stop phishing attacks, protect their most critical data, and meet compliance requirements.

2) What is BlokSec yuID?

Section titled “2) What is BlokSec yuID?”

yuID is BlokSec’s decentralized identity wallet. Once set up, you can use yuID to log in to integrated websites and mobile apps without the need for a password — yuID creates a unique, unforgeable digital signature for you each time you authenticate.

Installation Instructions

Section titled “Installation Instructions”

Before you begin, ensure you have received an enrollment email with an invitation to link your account with yuID. You will need this email in step 2.

Step 1: Download the yuID application from the App Store on your mobile device, or visit bloksec.io for Android. There is no need to open the app yet.

Step 2: Open the yuID enrollment email you received on your mobile device, and click on the “complete enrollment” link in the email.

Step 3: The yuID application will automatically open to handle the account enrollment. It will walk you through the initial app setup which will prompt you for your name, email address, and mobile number. BlokSec never shares this information without your permission.

Step 4: The yuID application will prompt you to secure the application with biometry (fingerprint or facial recognition depending on your device’s capabilities) or a passcode.

Step 5: Once the initial setup is complete, the app will proceed to complete the enrollment.

We recommend backing up your yuID seed (click the cog icon, and then select ‘Backup’) to ensure that your account will be recoverable in case of a lost device.

You are now ready to sign in with yuID!

3) Does BlokSec store users’ personal identifiable information (PII)?

Section titled “3) Does BlokSec store users’ personal identifiable information (PII)?”

BlokSec only stores users’ name and email address / logon id. Optionally the user can provide a mobile number to support an alternate secure login option.

4) Does BlokSec store users’ biometry information?

Section titled “4) Does BlokSec store users’ biometry information?”

No, the BlokSec service does not store any biometry information for a given user.

5) What if a device is stolen?

Section titled “5) What if a device is stolen?”

Users and administrators can remove stolen or lost devices from the directory so that they can no longer authenticate.

BlokSec enforces a policy where user biometry or PIN are required to authenticate. This ensures that only the device owner can log in and protects against a lost or stolen device gaining access.

6) What if a device is lost or I’m switching devices?

Section titled “6) What if a device is lost or I’m switching devices?”

BlokSec provides an innovative approach for users to back up and restore their linked accounts for passwordless authentication. See the Backup & Restore guide for detailed instructions.

7) Does BlokSec meet multi-factor authentication (MFA) guidelines?

Section titled “7) Does BlokSec meet multi-factor authentication (MFA) guidelines?”

Yes. BlokSec meets the standard MFA requirements. BlokSec employs multiple factors to log in:

  • Something you have: device-level security keys to support digital signature

  • Something you are: device-level biometrics

Unlike other MFA solutions, BlokSec does not use passwords. It is far more secure because BlokSec removes the centrally stored honeypot of passwords from the authentication flow.

BlokSec has none of the friction of other MFA solutions (hardware tokens, one-time passwords via SMS or email, and mobile-based MFA apps that provide 6-digit codes). It simply provides a secure frictionless login that users will love.

8) [Android] When trying to register with the yuID app on Android, I’m presented with an error message about Device Security

Section titled “8) [Android] When trying to register with the yuID app on Android, I’m presented with an error message about Device Security”

If you receive an error message during registration that says:

“To protect your personal digital key from misuse, the BlokSec application requires that your device be protected with a fingerprint or passcode. There is currently no security setup on your device.

Please enable security on your device under Settings > Device Security > Screen lock and try again.”

This means that the yuID app was not able to access your device’s secure hardware keystore. There can be multiple reasons for this:

  • Your device is open / unlocked, e.g., not currently protected with a fingerprint. To resolve: add a fingerprint lock to your device.

  • Your device is currently not configured to use a biometric sensor that meets the “Class 3” requirements of the Android operating system; according to Android documentation, in order for device implementations to allow access to keystore keys to third-party applications, they:

    • Must meet the requirements for Class 3 as defined in the Android CDD.

    • Must present only Class 3 biometrics when the authentication requires BIOMETRIC_STRONG, or the authentication is invoked with a CryptoObject.

    • To resolve: configure your device to be locked with a fingerprint.