|
Summary:
|
With a wide use of mobile devices, the amount of business transaction through mobile devices is drastically increasing. However, there are many weakness of a single-factor authentication for use in the mobile context, which requires the authentication to meet requirements in terms of the security and convenience. Therefore, there is a strong need for developing efficient and effective multifactor-factor authentication methods which are applicable to mobile context.
This Recommendation basically provides a multi factor authentication mechanism using mobile devices. It describes a weakness of a single-factor authentication mechanism, a need for multi factor authentication mechanism and various combinations of the multi factor authentication mechanism using mobile devices, and threats for the two-factor authentication mechanism. In addition, security requirements to reduce threats of a single-factor authentication are provided including potential typical multi factor authentication mechanisms. It is applicable for mobile devices with SIM card capability, and does not exclude virtual SIM cards. Specifically, it is applicable to all applications using mobile devices. This Recommendation uses the framework in Recommendation ITU-T X.1154 (X.sap-4).
|
