05 December, 2016 – SIMalliance has published a set of guidelines which will make it easier for mobile network operators (MNOs), service and solution providers to deploy Mobile Connect services which use an authentication application provisioned on the user’s SIM card.
Mobile Connect is a global solution, provided by the GSMA, for mobile phone based authentication, authorisation, identity and attribute services. It provides a secure, universal log-in process which allows users to be matched to their mobile phones, permitting them to log-in to websites and applications quickly with no need to remember passwords and user names.
One of the authentication mechanisms specified by the GSMA uses a SIM-based authentication application. In this type of Mobile Connect deployment, there are generally four ecosystem components: the SIM; the authentication application; the Over-the-Air (OTA) platform and the Mobile Signature Service Provider (MSSP) platform. As all of these components may be provided by different ecosystem actors, it is essential that the interfaces between them are interoperable.
SIMalliance’s objective in publishing Mobile Connect SIM Applet Interoperability Stepping Stones is to provide essential guidelines which will improve interworking between MNOs, service and solution providers and to simplify the interactions of the various components required for this type of solution. It also offers an analysis of the most relevant card features required to support the Mobile Connect application in order to support the operator in identifying the most suitable combination of functionalities that is compatible with the USIM deployed in the field. It also provides specific suggestions for effective testing.
Commenting on the release of the paper, Bruno Letellier, Member of the Board of SIMalliance said: “Through this latest body of work, SIMalliance has worked closely with the GSMA to offer support which should ease the deployment of SIM-based Mobile Connect services. SIM-based services present distinct advantages over other authenticators, as they benefit from the assurances of secure element technologies, which have been proven secure, stable and fully interoperable over two decades of successful implementations. SIMalliance strongly supports the goal of the Mobile Connect initiative, which is to deliver appropriate security across many different use cases, without compromising user convenience or reach.”
Mobile Connect SIM Applet Interoperability Stepping Stones can be downloaded from the SIMalliance website.
Note to Editors:
About SIMalliance (Security, Identity, Mobility)
SIMalliance is the global, non-profit industry association which simplifies aspects of hardware-based device security to drive the creation, deployment and management of secure mobile services. The organisation promotes the essential role of a dedicated tamper resistant hardware module in delivering secure mobile applications and services across all devices that can access wireless networks. By identifying and addressing related technical issues, and both clarifying and recommending existing technical standards relevant to the implementation of hardware security, the SIMalliance aims to facilitate and accelerate delivery of secure mobile applications globally.
SIMalliance members represent 88% of the global SIM card market. As such, the SIMalliance’s membership is responsible for delivering the most widely distributed secure application delivery platform in the world (UICC/SIM/USIM).
SIMalliance members are Card Centric Solutions, Eastcompeace, Gemalto, Giesecke & Devrient, Incard, Kona I, Oasis Smart SIM, Oberthur Technologies, Safran Identity & Security, VALID, Watchdata, Wuhan Tianyu and XH Smartcard (Zhuhai) Co. Ltd. SIMalliance Strategic Partners are Comprion, Linxens, Movenda and Simulity Labs.
For more information visit www.simalliance.org