Service status:

Increase security with a strong coupling

There are more and more advanced security threats in the digital arena. We continuously develop BankID to reduce risks and prevent crime. With a simple update, you can increase the security of your services.

QR code and autostart token

With a strong coupling between your service and BankID, the process becomes smoother for the customer while also reducing the risk of fraud. There are two versions of the protection: QR code and autostart token.

QR code for BankID on another device

QR code is used when the customer visits your services on computer but makes the identification via Mobile BankID. The QR code connects the customer on the device with the service and therefore the customer no longer needs to enter their Swedish Personal Identity Number.

How a QR code works

  1. The customer selects BankID on another device in the e-service.
  2. The customer reads a QR code on the screen with their BankID app.
  3. The customer confirms in the BankID app.

Autostart token on the same device

The autostart token is used when the customer visits your services on the same device as BankID is located, usually in a mobile phone. The BankID app is started directly from your service. Identification is faster while ensuring that no one can steal an identification or signature.

How autostart tokens work

  1. The customer selects BankID on this device in the e-service.
  2. The BankID app opens automatically.
  3. The customer confirms in the BankID app.

More secure without Swedish Personal Identity Number

With a strong coupling, the step with Swedish Personal Identity Number is abolished. Swedish Personal Identity Numbers are easy to obtain and can be used to carry out fraud.

Simple action that makes a big difference

The integrators who work with BankID already support strong coupling. The change is a simple configuration that does not require much resources, but makes a big difference to security. Ask your technicians or integrator to update in accordance with our technical guide.

Scammers can use e-services to:

  • Trick customers into believing they are calling from your company.
  • Access journal information or personal and account information.
  • Take actions in the customer's name, such as emptying accounts or taking out loans.

Follow our technical guide to make the update.