The MitID app introduces QR code and app switch

On June 6, 2023, the level of security and user experience of the MitID app will improve.

This will take the form of two changes:

  1. A QR code will gradually be added to the authentication process.
  2. App switching on mobile browsers will make MitID more secure and user friendly. 

Users will have to scan a QR code on their desktop before verifying their identity with MitID. Furthermore, there will now be a button to help the user open the MitID app on their phone when initiating a login on a mobile device.

Read more about the updates and what they mean for both users and businesses.

MitID QR code

Having to scan a QR code before verifying your identity will improve the level of protection against fraudsters and phishing attacks. That’s because the user will have to prove that they are physically present by the screen where the authentication takes place. This makes sure that the verified user is also the person who initiated the process.

MitID and the Agency for Digital Government (Digitaliseringsstyrelsen) have decided to update the MitID app after a long series of phishing attacks. The new QR code will contribute to a better and safer user experience.

However, the QR code will not be used for authentications on mobile applications or to verify online payments for Strong Customer Authentication (SCA).

Additionally, back in November 2021, Criipto wrote a piece on the vulnerability of MitID and how the use of a QR code could contribute positively to the security. The idea was inspired by Swedish BankID, which has used QR codes in their authentication flow since 2018.

Access the article about MitID and QR codes here.

MitID app switch

Going forward, it will become easier to open the MitID app during authentication on mobile browsers. After the process is initiated, users will now see a button that says “Open MitID app” (“Åbn MitID app” in Danish), sending them directly to the MitID app to finalize the authentication.

This feature will guide users through the MitID authentication process and improve their experience.

What does the update mean for businesses?

The MitID QR code will help companies protect users from accepting fraudulent transactions, payments, logins, and other types of user verifications.

App switch will help users quickly authenticate themselves on their phone by not having to manually open the MitID app. This will reduce friction and make users more likely to complete the authentication process.

Overall, the QR code and app switch will make the MitID app easier to use and increase security for businesses that provide MitID as a method of authentication.

What does the update mean for users?

The new MitID authentication experience with the QR code will look like this:

  1. A desktop user wants to login to a website that requires MitID.
  2. The user types in their username and clicks the button to proceed with the login.
  3. The user is now asked to scan a QR code on the desktop screen with the MitID app to complete the process.
  4. As the last step, the user will be asked to accept the MitID verification.

With the app switch on mobile browsers, users will go through the following steps:

  1. A user wants to use MitID on their mobile phone.
  2. The user types in their username and clicks the button to proceed with the login.
  3. The user will see the “Åbn MitID app” button on their phone.
  4. The user clicks the button and is automatically redirected to the MitID app to complete the authentication process.
  5. The user manually switches back to the mobile website with the MitID client.

Want to learn more?

Are you interested in learning more about MitID? 

Criipto is a certified MitID broker and provides seamless MitID integration for authentication and digital signatures.

Create a free developer account today or get in touch to discuss your needs with one of our MitID experts.

Author

Latest blog posts

A Brief History of Privacy

Over the past two decades, the rapid growth of personal data collection has dramatically changed how individuals, organizations, and governments view...

Why Is Everybody Talking About Age Verification for Social Media?

Should social media platforms restrict minors from certain content? Can they do it?

Multi-Factor Authentication: Definition, Use Cases, and Benefits

Traditional single-factor authentication methods, such as usernames and passwords, are increasingly vulnerable to cyberattacks. Multi-Factor...

Sign up for our blog

Stay up to date on industry news and insights