This document discusses authentication from a telco and end-user perspective. It notes that end-users want quick and simple access to digital services from their mobile devices without extra hardware tokens, usernames/passwords, or additional steps. SMS-based one-time passwords are widely used as an entry-level form of two-factor authentication (2FA) and offer improved security over no 2FA, but have some challenges. As technology changes rapidly, more advanced authentication capabilities are available from telcos that can provide strong customer authentication at scale in a layered approach. Telcos play a key role in offering authentication products from entry-level to more advanced options as part of the larger authentication ecosystem.

1. A Telco and End-user
Perspective on the
Authentication Journey
Glyn Povah
Group Head Mobile Identity, LUCA, Telefónica

3. End-users are people too!

4. We’re transacting more and
more on our mobile devices

5. We’re still early on our journey

6. We want quick and simple access to the digital
products and services we love
 Except for multi-billionairesor bond villains we don’t want to carry
around hardwaretokens to pay someone using digital banking
 We hateusernames and passwords and any other KBA
authentication
 We hateadditional transactional friction or even one extra step in
the process when transacting BUT
 Even for end users there is the right amount of friction, or put
another way the perception of security

7. Entry level 2FA: SMS One-time passwords

8. SMS based authentication (SMS OTP)
The accidental 2FA product
 Widely offered by service providers as entry level 2FA tool
 SMS based, simple to use, works on any device
 Worksat massive scale
Offers consumers improved security vs. no 2FAat all
 Part of the 2FA toolkit for many years to come
 BUT some challenges and more and more products availablein
the market offering stronger and more advanced authentication
capabilities...evolutiontopassive authentication

9. Phone numbers were never meant as ID?

10. Technologylandscape changing rapidly

11. Technologylandscape changing rapidly

12. SCA TelcoOpportunity
 Good toolkit of productsfor
service providersallowing them
to offer strongcustomer
authentication
 Productsthatwork at scale
 MNOs have a key role to play
from entry level products to
more advanced products
 Partof a much larger ecosystem
of products and services
 Layeredapproach by SPs

13. Why Telcos…aren’tthey slow old dinosaurs?

15. Telco based B2B authenticationoffering in the
authentication product ecosystem
Product(s) Benefits
Entry Level SMS OTP + attributes Ubiquity,scale,
customer
familiarity
Enhanced Mobile
Connect:
authenticate
 increasing LOA
(e.g.
authenticate+)
authenticate+
verified
msisdn
 Login use-case
(e.g. verified
msisdn)
Next Gen Network + Device
+ Behavioural
Powerful multi-factor
auth (e.g. dwell
(Something you are)* locations)
*Not commercially available today

16. End-users are people too, let’s maketheir lives
easier!