Mobile identity management

Mobile identity management

The mobile phone in addition to a wallet and house keys has become one of the essentials to take with you when leaving the house. By storing all the technical necessary applications on a SIM card, the mobile phone has turned into a device for managing each person’s digital identity.

Mobile Identity is a development of the traditional online authentication and digital signing; the SIM card of one’s mobile phone works as an identity tool. Mobile Identity enables legally binding authentication and transaction signing for online banking, payment confirmation, corporate services, and consuming online content. The user’s certificates are maintained on the telecom operator’s SIM card and in order to use them, the user has to enter a personal, secret PIN code. When using Mobile Identity, no separate card reader is needed, as the phone itself already performs both functions.

In contrast to other approaches, the mobile phone in conjunction with a mobile signature-enabled SIM card offers the same security and superior ease of use than for example Smart cards in existing Digital identity management systems. Smart card-based digital identities can only be used in conjunction with a card reader and a PC. In addition, distributing and managing the cards has become a logistical nightmare, exacerbated by the lack of interoperability between services relying on such a digital identity.

With the mobile signature concept, there are a number of private company stakeholders that have an inherent interest in setting up a mobile signature service infrastructure thus offering mobile identity services. These stakeholders are mobile network operators and to a certain extent financial institutions or service providers with an existing large customer base, that could leverage the use of mobile signatures across several applications.

Contents

Status quo in different countries

Finland

The Finnish government has supervised the deployment of a common derivative of the ETSI-based mobile signature service standard, thus allowing the Finnish mobile operators to offer mobile signature services. The Finnish government certificate authority (CA) also issues the certificates that link the digital keys on the SIM card to the person’s real world identity.

references

Sweden

The need for new authentication solutions like Mobile Identity in the Nordic region is rapidly growing as governments, public sector and financial institutions are increasingly offering online and mobile channels to access their services. These new services require more secure and user-friendly authentication methods.

In Sweden a consortium owned by banks and mobile operators (WPK.Net) is specifying a mobile signature service infrastructure that is first used by banks to authenticate online banking users. Later on the mobile signature services is supposed to be available for other applications as well.

Telenor Sweden has provided technology for the company's mobile signature services in Sweden since 2009. Telenor enables its customers a convenient and secure login to online services using their mobile phone for authentication and digital signing.

references

http://www.wpki.net http://www.valimo.com/news_and_events/16-02-2009/valimo-and-telenor-sweden-collaborate-mobile-authentication-technology

Estonia

The Estonian government has issued all citizens with a Smart card, but citizens are using the digital identity sparsely. There is now a concerted effort from the private industry to leverage the Estonian CA landscape and deploy mobile signature services, thus enabling Estonian citizens to port their existing digital identity to the mobile phone.

Turkey

The mobile operator Turkcell has bought a mobile signature service infrastructure and has now signed up 8 Turkish banks to enable them to use mobile signatures for online user authentication.

Other services relying on mobile signatures are:

  • Securing the withdrawal of small loans from an ATM
  • Processing custom work flow processes by enabling applicants to use mobile signatures.
references

http://www.valimo.com/news_and_events/26-02-2009/kenya-turkey-japan-lead-mobile-money-trend http://www.todayszaman.com/tz-web/detaylar.do?load=detay&link=113484 http://www.hurriyet.com.tr/ekonomi/6307988.asp?gid=196 http://www.turkcell.com.tr/bultenler/2007_02_20_mobile_signature_eng.pdf

Austria

The Austrian government has decided to allow private sector companies to propose means for storing the government-controlled digital identity. Since 2006, the Austrian government has explicitly mentioned mobile phones as one of the likely devices to be used for storing and managing a digital identity. Eight Austrian saving banks will launch[when?] a pilot allowing online user authentication with mobile signatures.

references

https://www.quelle-bausparkasse.de/presse/detail/88/

Quaified Mobile Identity Providers

Free Mobile identity Services

Abriva is a new promising free Mobile Identity Management. It now supports OpenID standard. ^^dead links^^

See also


Wikimedia Foundation. 2010.

Игры ⚽ Поможем написать реферат

Look at other dictionaries:

  • Mobile identity — A mobile identity is an idem identity type, based on a message or a set of (linked) messages derived from mobile computing devices, constituting claims about the mobility, the location or other characteristics which are assumed to represent a… …   Wikipedia

  • Identity management — In information systems, identity management is the management of the identity life cycle of entities (subjects or objects). An identity management system: # Establishes the identity ## Links a name (or number) with the subject or object; ## Re… …   Wikipedia

  • Mobile computing — The Galaxy Nexus, an example of a smartphone capable of tasks such as web browsing, e mail access, video playback, document editing, image editing, among many other features common on smartphones …   Wikipedia

  • Mobile community — A mobile community is a group of people generally united by shared interests or goals who interact: considering their context (e.g. time, space, social), by means of location independent information technology, and also including mobile access to …   Wikipedia

  • Mobile signature — A mobile signature is a digital signature generated either on a mobile phone or on a SIM card. Contents 1 Origins of the term 2 Mobile signatures today 3 Mobile Signature with On Board Key Generation …   Wikipedia

  • Mobile Signature Roaming — The concept of Mobile signature Roaming is: an Access point (AP) should be able to get a Mobile Signature from any enduser, even if the AP and the enduser have not contracted a commercial relationship with the same MSSP. Otherwise, an AP would… …   Wikipedia

  • Mobile Payments in India — Mobile Payments is a new and alternate mode of payment using mobile phones. Instead of using traditional methods like cash, cheque, or credit cards, a customer can use a mobile phone to transfer money or to pay for goods and services. A customer… …   Wikipedia

  • Mobile IP — (or IP mobility) is an Internet Engineering Task Force (IETF) standard communications protocol that is designed to allow mobile device users to move from one network to another while maintaining a permanent IP address. Mobile IP for IPv4 is… …   Wikipedia

  • Mobile Standards Alliance of India — (MSAI) is the official reporting body of GSMA for providing Genuine IMEI numbers to GSM Devices and mobile Handsets in India. MSAI also provides IMEI related assistance to regulatory bodies, network operators and security agencies.[1] The… …   Wikipedia

  • Mobile Application Part — SS7 protocol suite OSI layer SS7 protocols Application INAP, MAP, IS 41... TCAP, CAP, ISUP, ... Network MTP Level 3 + SCCP Data link MTP Level 2 …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”