All users accessing Movere need to be invited by an administrator using a valid, private email address. Public email services such as Outlook.com™, Gmail™ and Yahoo Mail ™ or are not permitted nor are generic user IDs.
No two users can share the same email address, nor can invites to different customer accounts be sent to the same domain suffix. This prevents the same company from being invited more than once into Movere and provides an extra layer of security when it comes to account spoofing. To prevent insecure access, once invited, the user receives an email prompting them to register. The invite itself is valid for 72 hours.
Access to Movere is governed by a combination of username, password and access codes. The password is chosen by users upon registration and has a minimum complexity requirement of normal and Upper-case characters, numbers and symbols. Once the user registers, an SMS or voice confirmation is sent to the phone number of that user, which includes a unique 7-digit code. The user has 5 minutes to enter to code before it expires.
Two-factor authentication via SMS code is required when a user accesses the Mover Portal for the first time or from an unrecognized device. If the Movere detects a change in the system-specific information associated with the user attempting to login, (e.g. a change in IP address, internet browser, browser version, etc.), the user will be prompted for two-factor authenticating via SMS code. The code will be sent to the mobile phone number associated with the user's Movere account.
In order to protect data from unauthorized access, Movere utilizes two factor authentication and short-lived tokens that are issued upon logon. The actual authentication and token management is performed by specialized APIs and industry standard providers such as Identity Server. Once the user’s identity is validated, the identity is stored in a token that has a lifespan of 1 day. This means that if a logged on user closes the browser without logging out, opening the browser and navigating to the Movere site will allow access for up to 1 day after the original logon. In addition to using short lived tokens, the user’s identity is protected from impersonation and man-in-the-middle attacks.
In order to ensure that a user’s account has not been compromised, Movere employs several validation techniques. Firstly, it records system-specific information such as IP address, internet browser version, display resolution and several others upon logon. Collectively, they are referred to as the user’s accessing system fingerprint. If the user’s system fingerprint changes, then the user is prompted to enter a new 7-digit code that is sent over SMS or voice call. Secondly, if the user enters the wrong password three (3) times consecutively, their account will be temporarily locked for 30 minutes. This is designed to prevent bots or other types of unauthorized users from brute-forcing their way into Movere.
Passwords are stored in a hashed format and are cryptographically irreversible. Movere manages role-based access rights via claims. All access to any database containing confidential information is authenticated. There are no clear text logins to any internet accessible systems. Administrative users also have additional capabilities including inviting additional users, granting and revoking access, and managing claims (Read, Write and Edit).