Bringing you an end to end Mobile Connect Solution. Mobile Connect for Mobile Network Operator. Mars 2016

Similar documents
Open Mobile API The enabler of Mobile ID solutions. Alexander Summerer, Giesecke & Devrient 30th Oct. 2014

GSM Association (GSMA) Mobile Ticketing Initiative

RESHAPING SIM BUSINESS PARIS. MOSCOW. DUBAI. SINGAPORE. SEATTLE.

Secure Elements 101. Sree Swaminathan Director Product Development, First Data

AXIAD IDS CLOUD SOLUTION. Trusted User PKI, Trusted User Flexible Authentication & Trusted Infrastructure

Exploring the potential of Mobile Connect: From authentication to identity and attribute sharing. Janne Jutila, Head of Business Development, GSMA

Mobile Banking in Europe and potentials for MNOs

GSMA Embedded SIM for Connected Cars

Accelerate Your Cloud Journey

GSMA Platforms & Operations services February 2019

Azure Active Directory B2C. Daniel Dickinson Enterprise Mobility Specialist

Security Strategy for Mobile ID GSMA Mobile Connect Summit

Why Microsoft Azure is the right choice for your Public Cloud, a Consultants view by Simon Conyard

DATACENTER SERVICES DATACENTER

Sagem Orga Strong, Global, Innovative.

Gary Bhomer. Director, Telstra Wholesale

Expertise that goes beyond experience.

Busting the top 5 myths of cloud-based authentication

Design and Implementation of a Mobile Transactions Client System: Secure UICC Mobile Wallet

#techsummitch

Google Identity Services for work

GSMA Embedded SIM Specification Remote SIM Provisioning for M2M. A single, common and global specification to accelerate growth in M2M

NFC embedded microsd smart Card - Mobile ticketing opportunities in Transit

The Open Application Platform for Secure Elements.

Orange Smart Cities. the ICT partner for innovators in the urban space

Göran Näslund M2M Business Development Manager Smart Metering Vodafone Global Enterprise Sweden

SOLUTIONSPORTFOLIO RESHAPING SIM BUSINESS

Mobile Payment & Retail Project. Maura Turolla, Telecom Italia - Innovazione

Developing, Deploying and Managing Applications on the Cloud

Company Profile. Cloud Acropolis Your True Omani Cloud Partner

IBM dashdb for Analytics

AT&T Messaging as a Platform (MaaP)

Industrial IOT Gateway Family Datasheet

NetPro. from Wireless Logic. Available on a per SIM license basis. No CAPEX. Retain your Airtime Contracts with your existing providers

The UICC. Recent Work of ETSI TC Smart Card Platform. Dr. Klaus Vedder Chairman ETSI TC SCP

BRIDGE TO GLOBAL MARKET FOR MVNOs. Local prices on mobile data around the world Global Mobile Data Exchange Gate to millions of underserved customers

SAP Security in a Hybrid World. Kiran Kola

Example Azure Implementation for Government Agencies. Indirect tax-filing system. By Alok Jain Azure Customer Advisory Team (AzureCAT)

Taking your next integration or BPM project to the cloud WebSphere Integration User Group, 12 July 2012 IBM Hursley

Apigee Edge Cloud. Supported browsers:

Webinar Tokenization 101

Mobile Connect Accelerator A GSMA Approved Solution By WSO2.Telco. Digital Enablement Powered By APIs For Telcos

ebook - TRUSTED esim TESTING FRAMEWORK - June 2016 BUILDING A TRUSTED EMBEDDED SIM TESTING FRAMEWORK IN THE AGE OF IOT

Kickstart. Overview. Oct 2017

Arkadin helps you achieve more at work: The voice expert for Microsoft Skype for Business and Office 365 For Large Enterprises

SEPA goes Mobile Dr. Marijke De Soete ETSI Security Workshop January 2011 Sophia Antipolis, France

The Mobile World Introduction

DATA CENTRE SOLUTIONS

Transform your network and your customer experience. Introducing SD-WAN Concierge

TRANSFORMING TO IT-AS-A- SERVICE

How to Keep UP Through Digital Transformation with Next-Generation App Development

The Device Has Left the Building

Security and Compliance at Mavenlink

SurePassID ServicePass User Guide. SurePassID Authentication Server 2017

M2M / IoT Security. Eurotech`s Everyware IoT Security Elements Overview. Robert Andres

Forging the Link Between Global Interoperability and New Business Opportunities

HARDWARE SECURITY MODULES (HSMs)

BEYOND AUTHENTICATION IDENTITY AND ACCESS MANAGEMENT FOR THE MODERN ENTERPRISE

EU Cloud Computing Policy. Luis C. Busquets Pérez 26 September 2017

Embracing the Phone as a Token What You Need To Know Andy Kemshall Co-Founder

Additional License Authorizations

Virtualized Network Services SDN solution for service providers

Data Security: Public Contracts and the Cloud

FUJITSU Cloud Service K5 - API Management Service Description

SMART CARDS. Miguel Monteiro FEUP / DEI

Certification Exam Guide SALESFORCE CERTIFIED IDENTITY AND ACCESS MANAGEMENT DESIGNER. Winter Salesforce.com, inc. All rights reserved.

Technical Brief. A Checklist for Every API Call. Managing the Complete API Lifecycle

Verasys Enterprise Security and IT Guide

EXPERIENCE SIMPLER, STRONGER AUTHENTICATION

hcloud Deployment Models

Architecture 1 3. SecureToken. 32-bit microprocessor smart chip. Support onboard RSA key pair generation. Built-in advanced cryptographic functions

Cloud Operations for Oracle Cloud Machine ORACLE WHITE PAPER MARCH 2017

Government Data Center Modernization

Sentinet for BizTalk Server SENTINET

INTO THE CLOUD WHAT YOU NEED TO KNOW ABOUT ADOPTION AND ENSURING COMPLIANCE

Partner Sales Playbook Atmosphere Voice and Messaging for Webex Teams

Azure Certification BootCamp for Exam (Developer)

5 Things to Consider when Moving to the Cloud. Dr Chris Folkerd

TynTec a VASCO Solution Partner Virtual Digipass / SMS Back-Up for Digipass March 2007

Jrsys Mobile Banking Solutions

IZO MANAGED CLOUD FOR AZURE

Apigee Edge Cloud - Bundles Spec Sheets

Journey to the Cloud Next Generation Infrastructure for the future workforce.

A Single Cloud for Business Applications

HPE Secur & HPE Secur Cloud

SurePassID Authenticator Guide. SurePassID Authentication Server 2017

SERVICE DEFINITION G-CLOUD 7 THALES PSN REMOTE ACCESS. Classification: Open

Modelos de Negócio na Era das Clouds. André Rodrigues, Cloud Systems Engineer

Transform your network and your customer experience. Introducing SD-WAN Concierge

WEB-APIs DRIVING DIGITAL INNOVATION

Cloud First Policy General Directorate of Governance and Operations Version April 2017

Microsoft Azure Course Content

PKI is Alive and Well: The Symantec Managed PKI Service

Single Sign-On. Introduction. Feature Sheet

Public. Atos Trustcenter. Server Certificates + Codesigning Certificates. Version 1.2

Mobile Devices as Identity Carriers. Pre Conference Workshop October 14 th 2013

IoT CoAP Plugtests & Workshop November 27 th 2012

Kako napraviti Cloud?

RUCKUS CLOUD WI-FI Cloud Managed Wi-Fi

Natural Security Alliance

Transcription:

Bringing you an end to end Mobile Connect Solution Mobile Connect for Mobile Network Operator Mars 2016 1

What is Mobile Connect for MNO? is a strong authentication to 2 factors 2

Unmatched end to end solution 1. Complete authenticator out of the box : SIM + SMS authentication / small footprint SIM applet + authenticator policy management 2. Mobile Connect Accelerator : subscriber management + self care portals Identity Gateway Service provider integration and management 3. Discovery services : API Exchange integration portability data base integration 3

Our approach with Mobile Connect for MNO Mobile Connect for MNO is: A highly secure mobile centric authentication service Fully designed and developed by OAB under GSMA Mobile Connect guidelines Managed cloud solution hosted in OAB Datacenters A fully multi-lingual (ISO characters) small footprint -7 KB- Cardlet : LOA2 & LOA3 designed for eidas compatibility A mutualized solution design for multiples MNOs and Service Providers A highly scalable SaaS offer Fully independent and separated business functions & Databases Fully redundant Reliable and scalable 4

Mobile Connect for MNO is a hosted complete package enabling MNOs to launch Mobile Connect Services Our offer includes the following services: Mobile Connect for MNO platform: AE + dedicated MASP + dedicated OIDC Java Card Applet for unlimited users + SMS OTP fallback White label Customer Care + Self Care web environments Pro active platform management Support helpdesk to MNO Hosting SMS OTP strong authentication Personal data 5

Hosting (France) Hosted in Orange Applications for Business Datacenter Managed by dedicated OAB resources following ITIL methodology SPoC to manage your service Global QoS (infrastructure / platform / Service) Service level reporting (vs platform of server reporting) Recovery Time Objective (RTO/GTR) : 4 hours Guaranteed Intervention Time (GIT/GTI) : 15 minutes Service Level Availability (SLA) : 99.85% 6

Service management 1 Monthly reporting Key Performance Indicators Problem reporting 2 Pro active scalability management Increase capability of servers (Ram, cpu, ) Increase number of servers to load balance 3 Software maintenance Platform & Cardlet Bug correction Product roadmap + lifecycle management 7

MNO support Support to ITIL standards Level 1 to level 3 support SPoC Customer care portal for your customer support representatives Web services with Mobile Connect for MNO functionalities Self care portal for end-users Registration Reset code Usage statistics 8

Current platform footprint Full commercial launches in Spain, Marocco and Egypt 9

Mobile Connect for MNO Functional Architecture & Technical Requirements 10

Identity Gateway Functional architecture Service Provider Aggregator OIDC interface MC Applet OIDC Server MNO SMS OTP Personal Data MNO IT Local Identity enablers (optional) Identity Authentication SSO End user SIM applet AE MASP OTA SMS OTP Fallback Local IS systems Provisioning Customer care SMS encryption SMS-C xms- Hub Self care

Abbreviations OIDC : OpenID Connect Authentication protocol based on Oauth 2.0 SLA OTA : Over The Air includes OTA Gateway Identity Gateway serves as connector between OIDC request coming from service providers and the Mobile Connect for MNO platform MC API : Mobile Connect API connector to AE AE : Acquiring Entity mutualized server which routes and performs authentication requests towards MASP servers MASP : Mobile Authentication Service Provider dedicated server which emits authentication requests to mobile via the MNO OTA 12

Technical Requirements SLA Available OTA with VPN connection. OAB will provide a Standardized Service Contract to MNO for Cardlet compatible with most R5 / R6 release SIMS R6 Global Platform 2.1.1 version march 2003 2.0.1 Javacard 2.2.1 2.1.1 3GPP 31.130 R6 v6.2 GSM 03.19 R5 v5.4.0 ETSI 102.241 R6 v6.7.0 NA R5 integration purposes. Available SMS-C with VPN connection Network Connection to MNO Information System provisioning, customer care, self care & OIDC / IS attribute sharing with VPN connection. 13

Mobile Connect for MNO Portals 14

Mobile Connect Enrolment (Self Care) SLA 15

Enrolment Step 1: Sign in SLA Before continuing to enrolment user must authenticate using MNO SSO or provide MSISDN 16

Enrolment Step 2: Sign up T&Cs SLA T&Cs management 17

Enrolment Step 3: 2 secret questions SLA Secret questions are designed to protect access to most sensitive requests in self-care PIN change (code forgotten) PIN reset (more than 3 mistakes) 18

Enrolment Step 4: installation and personal code configuration SLA This screen allows the subscriber to follow the final steps of the enrolment procedure on the mobile phone Step 4 : Cardlet OTA provisioning > No user action required Step 5 : Choose PIN code > Needs PIN to be entered twice (confirmed) on handset Step 6 : Handset configuration > No user action required Step 7 : Confirm sign up > Enter PIN on handset to confirm enrolment 19

Mobile Connect for MNO Economical Models 20

Build and Run PAYG model Build Run One time setup fees Including platform setup and integration Excludes specific translations (upon request) Unlimited user Cardlet license (within standard Basic service fee for platform including first 5% of total customer/sim base Extended service fee per active user > 5% user base (used the service once in last 12 months) implementation) 21

Additional optional services Service Localization (self care and customer care) Cardlet customization Cardlet for unsupported SIMs Business consulting Aggregator Services 22

Orange Applications for Business Presentation 23

gathering application and integration expertise in a single entity 3 complementary growth areas unique business integration of systems to enhance your business performance customer experience create a unique 360 customer journey big data analytics extract business insights from data Internet of Things run connected things and machines the power of a telecom operator with the expertise of a digital services provider your specialist for digital transformation 24

Key figures UK Benelux +11,000 customers +2,400 employees Atlanta France Dubai Singapore Beijing from SMEs to MNCs (300 outside France and 7,000 with SaaS solutions) including +250 outside France a unique team around the world 60,000 M2M devices (smart products) 11 million app store downloads + 300 million turnover in 2013 25

Main know-hows and certifications Experience For over 25 years, Orange Applications for Business has managed critical systems for its customers operating with several levels of certification Certifications Certified CMMI Level 3 for Software Development Conforming to processed methodology ITIL rev 3 (ISO 21000) for Operation of Services. Most of operational teams are ITIL certified ISO 9001 on several OAB business lines Several OAB employees are certified ISO 27001 Lead Implementer for information security management system. OAB follows best practice recommendations on information security management of ISO 27002 and security rules published by ANSSI. OAB operates some PCI-DSS certified payment services OAB TSM allowing deployment of NFC Mobile Payment is certified by Mastercard since 2013; Member of Industrial organization GlobalPlatform (System Committee) AFSCM (Association Française du Sans Contact Mobile) ADCET ('alliance pour le développement des transactions électroniques dans les collectivités territoriales) 26

Thank you 27

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback