Sagem Orga Strong, Global, Innovative.
CTST François Blanchard Global Account Marketing Manager 2
Market drivers The game has changed Mobile Network Operators are now WEB service providers Convergence of technology and services Multiple devices to access services requiring a SIM card New risks and new opportunities Security of Internet is weak (Hacking, phishing) Forecast for IT security market $ 12B in 2010 More than 35 000 WEB sites Open ID compatible Tons of web services means tons of passwords The SIM card The secure token of mobile networks (3GPP) The secure element for mobile NFC services Access control element for mobile TV 3
TLS Tandem: a way to secure Internet Postulates Make the SIM card a secure token for the WEB Single Sign On solution re-enforced by the mean of a SIM card and add convenience Compatible with standards and usual WEB technical environment (Open ID and HTTPS) Propose a solution to make the MNO a key player for the security of WEB services Partner Ethertrust market software for smart cards and design innovative solutions that strengthen the security of WEB applications while dramatically simplifying their use. 4
Driving use cases, secure Internet authentications E-Commerce E-payment E-Banking E-Gaming Poker Gambling games Single Sign On MNO WEB portal Bank internet site Any OpenID internet site Corporate services Intranet E-mail Corporate phonebook 5
USB companion, the device for convergence Internet Everywhere MNO WEB portal SIM MNO secure token Open ID Protected user data 6
How does it works 1- Automatic authentication Insert SIM in USB dongle Ma carte d'identité INTERNET TLS Tandem javacard applet Plug the dongle to laptop Connect to internet. Memory for Internet Everywhere software 2- Secure connection set up 3- Get access to WEB services 4- Use services TLS Tandem Proxy Java OS USB dongle with SIM card reader (PCSC) and HSDPA modem Windows / Mac / Linux OS 7
Role of the SIM in our solution Store certificates Authentication Set up secure session Transfer session keys - At registration step the SIM applet will receive and store the WEB service certificate -Exchange user credential With scurity provider to Operate the mutual authentication -An HTTPS or SSL session Is set up by the SIM card -The session key and encryption keys are Transmitted to proxy Service -The SIM contains a payment application used for the e-transaction 8
Solution architecture: case 1, TLS Tandem 4 Set up secured connection 3 Check service access rights WEB Service 2 Access request to WEB service 1 Create a TLS Tandem account Mobile Operator Internet 9
Solution architecture: case 2, Open ID Certificate check 1 Create Open ID account 3 Check service access rights Security Provider 2 Re-routing to security provider 1 Access request to WEB service WEB Service 4 Set up secured connection Mobile Operator Internet 10
User experience Secure SSL session 11
Business model 1 Connect token and log to my MNO portal 2 Access 4 to a partner web store Cash back Partner WEB service 3 «One click» payment 12
Benefits The end user Simplify and protect its life on Internet No more need for login & password Phishing killer solution The MNO Become an Internet security provider Open ID provider Secure usage of it WEB services Trace usage of WEB services for better billing Increase usage of WEB services Technical A unique and secure place to deploy the solution to ensure more security: every single byte flowing out of the SIM card is encrypted Spyware are blind, the computer is just a «plug» Authentication & Encryption algorythms are entirely computed in the SIM Card Compatible with existing infrastructure and standards 13
Conclusion Our message Let s make the SIM card a secure token to provide more security to WEB services Our solution TLS Tandem enables the SIM to play the role of secure token for WEB services. 2 main use cases for the mobile operator: 1- Tls tandem: to secure access to its own set of WEB services reserved to MNO subscribers 2- Open ID: to become an Open ID security provider for all the Internet re-inforcing security thanks to the SIM card 14
Sagem Orga Strong, Global, Innovative.