Copyright © 2015 NTT. All Rights Reserved.

N－10 Secure, Cost-effective and User-friendly Authentication Ecosystem

Network Assisted Authentication Method for Web Services

[1] FIDO (Fast IDentity Online) Alliance: FIDO is a standards body that aims to promote password-free authentication methods such as biometrics and NFC. Various companies related to web service authentication, for example, web service providers, system integrators and chip vendors, join the alliance.

[2] GSMA Mobile Connect: GSMA Mobile Connect is a standards body that aims to use mobile network authentication technology in Web-service authentications.

Features

Application Scenarios ■ High security and high usability authentication is able to be used in

fields that are highly active, for example, an EC site not limited to fields like finance.

■ Our proposed method enables safe and stress-free authentication to be used in a future world where wearable devices and several "things" are connected with each other.

■ In the future, wearable devices will be widely used in addition to using smartphones and tablets. Password-free authentication methods are gathering attention; however, they lead to new problems, e.g., rising operation costs for service providers and lowered usability for users. We comprehensively solve these problems by using carrier network technologies.

■ We solve the cost rising problem by combining password-free authentication, network authentication, and network operation. As a result, service providers can innovate high-security authentication technologies more cost efficiently.

■ Existing password-free authentication methods have the problem of making user operation more complicated because authentication keys are tied to devices. We propose a solution in which a carrier network stores the authentication information of users, and, by sharing it among several devices, users can use multiple devices more easily.

Taking on challenges toward 2020 We encourage password-free authentication with the network and contribute to realizing a safe and secure internet.

〈Contact〉nw-forum@lab.ntt.co.jp

Password-based authentication methods have reached the limit, and their vulnerability frequently causes security incidents. Standardization methods [1,2] aim to realize password-free authentication to improve security and a part of usability. Our proposition can complement these methods with network functions and make an authentication ecosystem better by satisfying the five requirements for authentication: security, usability, operating cost efficiency, privacy, and business applicability.

Finger print

USB dongle NFC Camera

Security

Usability

Privacy

Operating cost

efficiency

Business applicability

Five requirements

Network operators

• Improve security with password-free authentications • Mitigate burden of ID-operation • High adaptability to service providers' ID strategy • Get identity verification information of users

Authentication

Service providers

Users

The Internet

Merits for service providers

Finger print

Management of authentication keys

in network

Contribute to various players

with B2B2X model

C S

B B

S

C

B

• Enhance additional value of network

• Network operators contact their users easier

Merits for NW operators

• Improve security with password-free authentications

• Convenient multiple device use

• Multiple, different IDs ensure user-privacy

S

U

P

P

U

Merits for Users

Flexibly controlled and collaboration-enhanced

NWs

NWs with co-created services

Operators