NETp1-09: Enhancing Internet Service Security Using GSM SIM Authentication

This paper describes thoroughly a service called SIM strong authentication which is aiming to provide strong and user-friendly authentication to the Internet Web services. The idea is to extend the usage of the current SIM authentication used in GSM to Internet Web services. The idea of making the mobile phone and its SIM card a universal authentication token is compelling since the mobile phone is definitely the most used device nowadays and the GSM network is currently the largest mobile network and is ubiquitous in much of the world. This service is available anywhere and can support any Internet services. It is ideal for services like Internet Banking, eAdministration or enterprise internal Web pages. The SIM strong authentication service is both user-friendly and cost efficient, with a low deployment threshold.