© GSMA 2013

22nd May 2014 – Janne Jutila – GSMA Personal Data

GSMA Personal Data: Enabling trust and creating value from mobile identity

About the GSMA

© GSMA 2013

© GSM Association 2013

UbiquitousUbiquitousUbiquitousUbiquitous

3,2 billion

subscribers –

often full adult

population

Why mobile for identityWhy mobile for identityWhy mobile for identityWhy mobile for identity

PersonalPersonalPersonalPersonal

Device stays

with user most

of the time

© GSMA 2013

MobileMobileMobileMobile

Works almost

anywhere with

same UX

ProvenProvenProvenProven

Mobile

Infrastructure

in place

SecureSecureSecureSecure

Network

authentication

and data

privacy

Personal Data is a key operator & GSMA initiative and enabler for other programmes

Future

Communications

Connected

Living

Mobile

Commerce

© GSMA 2013

Future Communications

Personal Data / Mobile Identity

Mobile Industry Vision

© GSMA 2013

EU countries & institutions and the mobile industry have a common agenda: “building a Connected Europe that can help meet the region’s growth,

employment, innovation and sustainability challenge s”

We provide:

The Personal Data programme

Align the industry, governments and other

stakeholders on a global scale to enable a suite of

secure authentication and identification services

aimed at facilitating customer validation and

enhancing user control of personal data

Align the industry, governments and other

stakeholders on a global scale to enable a suite of

secure authentication and identification services

aimed at facilitating customer validation and

enhancing user control of personal data

• Personal Data Programme established to address new opportunity for the mobile industry

© GSMA 2013

• Subject matter expertise & best practice guidance • Business models, strategy, operations support• Technology, standards, interoperability• User experience, priority use cases

• Industry & Stakeholder engagement• Business, government & public sector• Technology and solution providers, SIM vendors

• Policy & regulatory engagement• Sustainability, cost, process• Data privacy, security requirements and hosting legislation

There are many mobile technologies available that

deliver authentication at different LOA’s1

SMS-pushed OTP Handset-

generated OTP2

SIM-generated

OTP2

SIM ‘Click OK’

SIM ‘Enter PIN’

SIM Mobile

signature3

MSISDN + PIN

USSD ‘Click OK’

© GSMA 2013

Personal Data

1 Levels of Assurance based on ISO/IEC 29115 Clause 62 Generation of a One-Time-Password on the SIM or an application running in the handset3 SIM PIN + wPKI

MSISDN + PIN entered on tablet/PC

Seamless login (via mobile network)

MSISDN + PIN entered via handset

app

Level 1 - Low Level 2 - Medium Level 3 - High Level 4 – Very High

Re-thinking identity – Moving from company & industr y fragmentation to users view of world

Commerce,Couponing, Loyalty

Payments

ContentCommunity

Services are here! How do we get here?

Banks OEMsOnline players

OperatorsPublic services

9

Single identity for userTicketing

AdvertisingAutomotiveHealth

Smart City

Public services

Current mobile authentication services

10CONFIDENTIAL

Mobile birth registration

Subscriber data management

Mobile BankID research - very high levels of satisfaction, in tandem with frequent usage

82% Satisfied with

Mobile BankID

79%using Mobile

BankID at least once a week

68%say it makes

their life easier

11

Source: Mobile BankID Norway StudyBase: All Respondents (903)

It was almost magical

It would be hell if I lost it. I’m totally reliant on it

Really satisfied with it. No problem with it at all

It provides more flexibility. You can do things

anywhere

It works how it should. Simple

It simplifies my day

Fast. Easy

LEADING MOBILE OPERATORS UNVEIL MOBILE CONNECT INIT IATIVETO PROVIDE CONSISTENT AND INTEROPERABLE APPROACH

TO MANAGING DIGITAL IDENTITY

Mobile Ecosystem Players Collaborate to Deliver Seamless,Secure Mobile Identity Services for Consumers

24 February 2014, Barcelona: The GSMA today announced the launch of a collaborative initiative, supported by leading mobile operators including Axiata Group Berhad, China Mobile, China Telecom,

Mobile Connect press release 24.2.2014 MWC

© GSMA 2013

supported by leading mobile operators including Axiata Group Berhad, China Mobile, China Telecom, Etisalat, KDDI, Ooredoo, Orange, Tata Teleservices, Telefónica, Telenor, Telstra and VimpelCom, to develop an innovative new service that will allow consumers to securely access a wide array of digital services using their mobile phone account for authentication. The Mobile Connect service will simplify consumers’ lives, offering a single, trusted, mobile phone number-based authentication solution that fully respects their online privacy. In addition to leading mobile operators, key players from across the ecosystem are among the early supporters of this initiative, including Dailymotion, Deezer, Gemalto, Giesecke & Devrient, Morpho, Oberthur and VALID.

12

Mobile Connect enables individuals to manage their identity

consistently across services and countries

…and can help countries move towards e-GovernmentAdoption of mobile technologies to support and enhance government performance and foster a

more connected society

Enablers for e-GovernmentEnablers for e-Government Benefits of e-GovernmentBenefits of e-Government

• Mobile penetration is even higher

than internet penetration

• Reaching whole population

© GSMA 2013

than internet penetration

• Ease of use for the citizens

• User control

• Wider reach – mobile always with

users

• Secure and convenient

authentication

• Greater transparency

• Solution to digital divide

• High services availability

• Better responsiveness

• Scalability and efficiency

• Reduced costs from shared multi-

purpose infrastructure

• Improved service quality

perception

• Citizen satisfaction towards public

services

© GSMA 2013

Janne Jutila, GSMA Personal Data

Thank You!