Mobile security could be about to get that much stronger.
The The Mobile Authentication Taskforce, which consists of wireless carriers AT&T, Verizon, T-Mobile, and Sprint, have released product details for what it calls a “next-generation mobile authentication platform.”
The system could be the successor to the current SMS-based authentication method used today. While this method has caught on, it suffers the vulnerability of phone numbers not being private and being possible to spoof.
The updated solution would deliver a cryptographically verified phone number and profile data for users of authorized applications with their consent. Authentication security is strengthened by processing unique attributes such as a network verified mobile number, IP address, SIM card attributes, phone number tenure, phone account type and more. In addition, advanced analytics and machine learning capabilities will be used to help assess risk and protect customers.
The group stated that developers would be able to register with the new system and use “private and permissioned blockchain technology” to maintain app integrity.
Per the group’s self-description:
“Formed last year to develop a mobile authentication solution to help protect enterprises and consumers from identity theft, bank fraud, fraudulent purchases and data theft, the Mobile Authentication Taskforce has dedicated resources developing a highly secure and trusted multi-factor authentication platform powered by the carrier networks. The taskforce vision includes interoperability with GSMA’s Mobile Connect technology.”
The new system has yet to become available, although the Mobile Authentication Taskforce has said it will begin internal testing soon. Ultimately, the group wants consumers to use the new system by the end of 2018 with a website for developers to enroll in the system also debuting this year.
Stay tuned for additional details as they become available.