This document discusses authentication from a telco and end-user perspective. It notes that end-users want quick and simple access to digital services from their mobile devices without extra hardware tokens, usernames/passwords, or additional steps. SMS-based one-time passwords are widely used as an entry-level form of two-factor authentication (2FA) and offer improved security over no 2FA, but have some challenges. As technology changes rapidly, more advanced authentication capabilities are available from telcos that can provide strong customer authentication at scale in a layered approach. Telcos play a key role in offering authentication products from entry-level to more advanced options as part of the larger authentication ecosystem.