Sagem Orga Strong, Global, Innovative.

Similar documents
Jrsys Mobile Banking Solutions

Authentication Technology for a Smart eid Infrastructure.

ACR38 Smart Card Reader

ACR38U-A4. Smart Card Reader. Technical Specifications V2.03. Subject to change without prior notice.

epass FIDO -NFC PRODUCT MANUAL

Dr. Char-Shin Miou Chunghwa Telecom. Co. April 7, 2011

A Triple Interfaces Secure Token -TIST- for Identity and Access Control in the Internet Of Things

Network Device Provisioning

GLOBALPROTECT. Key Usage Scenarios and Benefits. Remote Access VPN Provides secure access to internal and cloud-based business applications

SAS and F5 integration at F5 Networks. Updates for Version 11.6

A New Convergent Identity System Based on EAP-TLS Smart Cards

Bill Wear. VirtualVault Product Manager. Internet Banking Case Study

A Technical Overview of the Lucent Managed Firewall

Identity and Authentication PKI Portfolio

CitiDirect BE Portal Security, technical requirements and configuration

Help Document Series: Connecting to your Exchange mailbox via Outlook from off-campus

CONVENIENCE & SECURITY ARE THE KEYS TO SUCCESS NOW - SUBJECT TO THE SMART AUTHENTICATION. Kelly Ng Co-Founder

ODYSSEY. cryptic by intent. Snorkel-TX. Feature Highlights & Technical Specifications. Odyssey Technologies Ltd.

Open Mobile API The enabler of Mobile ID solutions. Alexander Summerer, Giesecke & Devrient 30th Oct. 2014

SOFTEL Communications Password Reset and Identity Management Suite

Identity and Client Security for Remote Access Virtual Credential Container

hidglobal.com HID ActivOne USER FRIENDLY STRONG AUTHENTICATION

ACR38T-D1. Smart Card Reader. Technical Specifications. Subject to change without prior notice

Welcome to Cogeco UltraFibre Internet. UltraFibre Internet User Guide

G/On. G/On is available for Windows, MacOS and Linux (selected distributions).

XSEDE Canonical Use Case 4 Interactive Login

Bringing you an end to end Mobile Connect Solution. Mobile Connect for Mobile Network Operator. Mars 2016

ACR100H SIMFlash (HID)

NFC embedded microsd smart Card - Mobile ticketing opportunities in Transit

Cyber Security and You: The Future of Physical Access in a Digital World. Chip Epps & Daniel Bailin HID Global

Web as a Distributed System

ACR38U-BMC. Smart Card Reader. Technical Specifications. Subject to change without prior notice

Web Cash Fraud Prevention Best Practices

Smart Payments. Generating a seamless experience in a digital world.

ACR38U PocketMate. Smart Card Reader. Technical Specifications. Subject to change without prior notice

Smart Cards and Authentication. Jose Diaz Director, Technical and Strategic Business Development Thales Information Systems Security

Interface. Circuit. CryptoMate

Oracle Payment Interface Token Proxy Service Security Guide Release 6.1 E November 2017

The Gemalto offer for PKI market in Russia

Meeting FFIEC Meeting Regulations for Online and Mobile Banking

How Next Generation Trusted Identities Can Help Transform Your Business

Enabling Mobile NFC CTST 2008

Inside Symantec O 3. Sergi Isasi. Senior Manager, Product Management. SR B30 - Inside Symantec O3 1

Welcome to Cogeco UltraFibre Internet. UltraFibre Internet User Guide

PCMS. PC-linked Reader with Mass Storage.

Kickstart. Overview. Oct 2017

br301 DATA SHEET V1.1 Feitian technologies Co., Ltd. Website:

ArcGIS for Server: Security

ACR1252U. NFC Forum Certified Reader. Technical Specifications V1.03. Subject to change without prior notice.

FINGER VEIN SERVER FOR RETAIL BANKS

Securing ArcGIS Services

Architecture 1 3. SecureToken. 32-bit microprocessor smart chip. Support onboard RSA key pair generation. Built-in advanced cryptographic functions

CPET 581 E-Commerce & Business Technologies. References

Session 2: Understanding the payment ecosystem and the issues Visa Europe

Client 2. Authentication 5

ACR39 Series

Dohatec CA. Export/Import Procedure etoken Pro 72K FOR USERS OF ETOKENS [VERSION 1.0]

Single Sign-On Showdown

UI-9 OS Installation Guide in SmartCLOUD Director. CITIC Telecom CPC. OS Installation Guide in SmartCLOUD Director

Upgrading an ObserveIT One-Click Installation

SIM Smart Card Overview

Platform Compatibility... 1 Enhancements... 2 Known Issues... 3 Upgrading SonicOS Enhanced Image Procedures... 3 Related Technical Documentation...

What s New for Enterprise and Education ios 11, macos High Sierra 10.13, tvos 11, and deployment tools and services

Mobile NFC Services Opportunities & Challenges. NGUYEN Anh Ton VNTelecom Conference 31/10/2010

The StrideLinx Remote Access Solution comprises the StrideLinx router, web-based platform, and VPN client.

Factsheet of Public Services Infrastructure (PSi) Updated on: 1st Sep 03

Security Guide Zoom Video Communications Inc.

Monitise. RSA Adaptive Authentication On-Premise Implementation Guide. Partner Information. Monitise Mobile Banking Solution

ACR100F SIMFlash (CCID)

Ch 1: The Mobile Risk Ecosystem. CNIT 128: Hacking Mobile Devices. Updated

IDGo Middleware and SDK for Mobile Devices

PCI DSS 3.1 is here. Are you ready? Mike Goldgof Sr. Director Product Marketing

Security Strategy for Mobile ID GSMA Mobile Connect Summit

AXIAD IDS CLOUD SOLUTION. Trusted User PKI, Trusted User Flexible Authentication & Trusted Infrastructure

IBM Secure Proxy. Advanced edge security for your multienterprise. Secure your network at the edge. Highlights

Ethical Hacking and Prevention

DCCKI Interface Design Specification. and. DCCKI Repository Interface Design Specification

3.1 Getting Software and Certificates

PROTECTED EXTENSIBLE AUTHENTICATION PROTOCOL

Smart Card meets Connectivity New Opportunities in Mobile Business with NFC Technology. Smart Card Alliance2005 Fall Annual Conference Martin Bührlen

EXPERIENCE SIMPLER, STRONGER AUTHENTICATION

M2M / IoT Security. Eurotech`s Everyware IoT Security Elements Overview. Robert Andres

TECHNOLOGY Introduction The Difference Protection at the End Points Security made Simple

Mobile Identity Management

2.0 System Requirements

ACR3801. FIPS 201 Certified. PC-linked Smart Card Reader. Technical Specifications.

ACR101I SIMicro (CCID)

Strong Authentication for Physical Access using Mobile Devices

Securing Connections for IBM Traveler Apps. Bill Wimer STSM for IBM Collaboration Solutions December 13, 2016

Plug into more places


Pro s and con s Why pins # s, passwords, smart cards and tokens fail

Use Digipass two-factor authentication

Functional Documentation for "NFC CSP Light" Version 1.0

WiFi & Small Cells from Arqiva Off-loading traffic, without off-loading revenue

Comodo Authentication Solutions Overview

From wired internet to ubiquitous wireless internet

INNOVATIVE IT- SECURITY FOR THE BANKING AND PAYMENT INDUSTRY

Barracuda Networks NG Firewall 7.0.0

Provide One Year Free Update!

Transcription:

Sagem Orga Strong, Global, Innovative.

CTST François Blanchard Global Account Marketing Manager 2

Market drivers The game has changed Mobile Network Operators are now WEB service providers Convergence of technology and services Multiple devices to access services requiring a SIM card New risks and new opportunities Security of Internet is weak (Hacking, phishing) Forecast for IT security market $ 12B in 2010 More than 35 000 WEB sites Open ID compatible Tons of web services means tons of passwords The SIM card The secure token of mobile networks (3GPP) The secure element for mobile NFC services Access control element for mobile TV 3

TLS Tandem: a way to secure Internet Postulates Make the SIM card a secure token for the WEB Single Sign On solution re-enforced by the mean of a SIM card and add convenience Compatible with standards and usual WEB technical environment (Open ID and HTTPS) Propose a solution to make the MNO a key player for the security of WEB services Partner Ethertrust market software for smart cards and design innovative solutions that strengthen the security of WEB applications while dramatically simplifying their use. 4

Driving use cases, secure Internet authentications E-Commerce E-payment E-Banking E-Gaming Poker Gambling games Single Sign On MNO WEB portal Bank internet site Any OpenID internet site Corporate services Intranet E-mail Corporate phonebook 5

USB companion, the device for convergence Internet Everywhere MNO WEB portal SIM MNO secure token Open ID Protected user data 6

How does it works 1- Automatic authentication Insert SIM in USB dongle Ma carte d'identité INTERNET TLS Tandem javacard applet Plug the dongle to laptop Connect to internet. Memory for Internet Everywhere software 2- Secure connection set up 3- Get access to WEB services 4- Use services TLS Tandem Proxy Java OS USB dongle with SIM card reader (PCSC) and HSDPA modem Windows / Mac / Linux OS 7

Role of the SIM in our solution Store certificates Authentication Set up secure session Transfer session keys - At registration step the SIM applet will receive and store the WEB service certificate -Exchange user credential With scurity provider to Operate the mutual authentication -An HTTPS or SSL session Is set up by the SIM card -The session key and encryption keys are Transmitted to proxy Service -The SIM contains a payment application used for the e-transaction 8

Solution architecture: case 1, TLS Tandem 4 Set up secured connection 3 Check service access rights WEB Service 2 Access request to WEB service 1 Create a TLS Tandem account Mobile Operator Internet 9

Solution architecture: case 2, Open ID Certificate check 1 Create Open ID account 3 Check service access rights Security Provider 2 Re-routing to security provider 1 Access request to WEB service WEB Service 4 Set up secured connection Mobile Operator Internet 10

User experience Secure SSL session 11

Business model 1 Connect token and log to my MNO portal 2 Access 4 to a partner web store Cash back Partner WEB service 3 «One click» payment 12

Benefits The end user Simplify and protect its life on Internet No more need for login & password Phishing killer solution The MNO Become an Internet security provider Open ID provider Secure usage of it WEB services Trace usage of WEB services for better billing Increase usage of WEB services Technical A unique and secure place to deploy the solution to ensure more security: every single byte flowing out of the SIM card is encrypted Spyware are blind, the computer is just a «plug» Authentication & Encryption algorythms are entirely computed in the SIM Card Compatible with existing infrastructure and standards 13

Conclusion Our message Let s make the SIM card a secure token to provide more security to WEB services Our solution TLS Tandem enables the SIM to play the role of secure token for WEB services. 2 main use cases for the mobile operator: 1- Tls tandem: to secure access to its own set of WEB services reserved to MNO subscribers 2- Open ID: to become an Open ID security provider for all the Internet re-inforcing security thanks to the SIM card 14

Sagem Orga Strong, Global, Innovative.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback