THE CUSTOMER

The customer is a major Korean credit card company that manages customer assets and highly sensitive information, and therefore must meet the highest standards for security, stability, and reliability. As a financial institution, it operates under stringent regulations on personal data protection and electronic financial transactions, which impose demanding requirements for encryption, access control, and authentication. In this environment, physical access control and IT security cannot be managed separately and must function as a tightly integrated system across multiple sites and stakeholders.

THE CHALLENGE

The customer needed to modernize its aging, card-based, and fragmented security infrastructure to keep pace with its growing scale and strict financial-industry regulations, requiring tightly integrated access control and IT security with strong encryption and high-assurance authentication. Suprema addressed these needs by delivering the required database and communication-path encryption stronger multi-factor authentication, and an integrated security management platform aligned with the customer’s complex regulatory environment.

THE SOLUTION

➊ Deployed Suprema’s integrated security platform to centrally manage three office buildings and approximately 8,000 employees, bringing physical access control and IT security operations under a single framework.

➋ Integrated mobile FIDO-based fingerprint and facial authentication across physical access points and administrator logins, eliminating password dependence.

➌ Restricted access to the BioStar 2 platform to designated security and HR administrators, who authenticate through mobile FIDO-based dual authentication for higher assurance in privileged account management.

➍ Implemented granular access rights by user, time, and zone, including sensitive areas such as meeting rooms and server rooms.

➎ Extended facial authentication beyond access control to on-site payments by integrating it with the payroll system, allowing employees to make payments at internal cafés, convenience stores, and cafeterias without cards or wallets, while ensuring secure, auditable processing.

➏ Installed BioStation 3 at key entry points including lobby and meeting rooms to provide fast, contactless authentication with resistance to spoofing attempts and robust performance despite changes such as masks, glasses, and hats.

➐ Customized the hardware design to align device appearance with the customer’s brand image.

KEY BENEFITS

➊ Strengthened overall security posture by replacing password-based administrator access with mobile FIDO dual authentication and by enforcing detailed, zone-based access policies.

➋ Reduced exposure to credential theft and unauthorized access by adopting a password less, biometric-centric authentication approach.

➌ Improved employee convenience by enabling cardless, wallet-free access and payment experiences, allowing staff to pass through secured areas and complete everyday transactions using facial authentication only.

➍ Enhanced operational efficiency through unified management of three office buildings on a single platform, simplifying administration.

➎ Increased employee satisfaction by providing faster, seamless, and modern user experience at entrances and payment points.

➏ Created a differentiated, finance-specific digital transformation case that demonstrates how advanced AI-powered facial authentication and integrated access control can coexist with, and even reinforce, stringent financial security regulations.