Mobile connect authentication with EAP-AKA
To log into an application, users need quite often to have an account, i.e. usernames and passwords. This becomes a problem when the number of accounts keeps increasing. Mobile Connect offers a simple and fast way for users to log into an application by matching the users to their mobile phones. In order to achieve that the user should be authenticated by their Mobile Network Operator (MNO). Until now this happens with various methods, i.e. SMS, Smartphone App Authenticator (SAA), etc, which have either security or complexity issues. To address these drawbacks, we propose an alternative authentication method which utilize the EAP Authentication and Key Agreement (AKA) mechanism of the 3rd generation mobile networks, specified for Universal Mobile Telecommunication System (UMTS). We suggest this mechanism to be deployed as a SAA. What is more, for the EAP packets to be transferred through the internet, a method like HTTP Authentication with EAP or IPsec could be used.