Presentation on theme: "Mobile identity you really trust"— Presentation transcript:
1Mobile identity you really trust Liisa Lukin, Sertifitseerimiskeskus
2This the problem our company is dealing everyday life This the problem our company is dealing everyday life. To provide a possibility to have an identity for electronic environment!Reality in internet. Dogs say that they are humans, old grumpy men say that they are young and handsome guys.For some services this is not enough, that you say that “hello! my name is Liisa”
3Our missionTo guarantee that there are electronic ID’s on the market that both public and private sector can trustTrust in an identity: who issues, who believes, who can fake, price of fakeIdentity itself is not enough (many countries where is token) but no usage or trust at all.
4Company backroundThe only provider of certification services in EstoniaRunning the core infrastructure for Estonian eIDEstablished in February 2001Currently 35+ employeesSK is privately held company with 4 shareholders having 25% each:Major clients: Republic of Estonia, Trüb, Gemalto, Estonian banks and telecom operators, ealth sectorNow also more focus on exportIncluding issuance of certificates and using the certificates.
5Usage of Estonian eIDPopulation: 1,3 mln>410,000 active ID-card users>40,000 Mobile-ID users10 mln transactions per monthInc. ~1.5 mln Mobile-ID transactionsNumber of transactions per month:~25 for each eID user~38 for each Mobile-ID userSK is running the core infrastructure for Estonian eIDSK is owner of eID infra components
6Mobile-ID solutionMobile-ID provides a secure mechanism for subscribers to identify themselves to any service providersSubscribers are issued an SIM-card with a cryptographic certificate proving their identityThe service provider uses the Mobile-ID to verify the identity of the subscriber
7Mobile-ID in EstoniaOn the market since 2007 as an alternative to ID cardOffical document from 2011All operators are supportedSK was driving development and implementation of requirementsUnique toolset to combine WPKI and PKI possibilitiesSK is offering the CA and TSP services – owner of the core infrastructureAll service providers (public / private) support Mobile-ID for authentication and signingTrust of issuance procedureMobile-ID shares the two main functions of the ID-Card – it enables secure authentication and digital signatures. But it comes with an added benefit – since you can do everything on your mobile phone, you won’t need an ID-Card reader. You can be away from your computer, travelling or just walking your dog, and only need a mobile phone to sign documents, perform bank transactions etc.
8Secure authentication and digital signature in every pocket DEMOSecure authentication and digital signature in every pocket
9Mobile-ID is trusted by: BanksGovernmentPublic Servicese-ServicesWeb SitesSwedbankE-votingGateway to eEstonia, eesti.ee portalIIZI Insurance BrokerStudent information systemsSEB BankEstonian Tax and Customs BoardDocument signing portalIf P&C Insurance LtdE-Learning Development CentreDanske BankCenter of Registers and Information SystemsPublic transport ticketing systemElectricity provider portalsTallinn UniversityStudent Information SystemNordeaEstonian Road Administration (Vehicle Register)eKool education information systemTele2 / EMT / ElisaApollo Book Shope-shopLHV PankEstonian Agricultural Registers and Information BoardNasdaq OMX Estonian Securities MarketMedicum - medical assistanceEstonian University of Life SciencesKrediidipankPublic Procurement RegisterUnemployment Insurance FundLottery ticketsCompany loyalty card websitesTallinn Business BankHealth Information SystemGoSwift – information system for managing a common border queueGas consumption portale-auctionsBank: Use M-ID to authorize online banking transactions from the handset, 70% of M-ID transactions come from banking.Government Use handset with secure M-ID SIM to vote in national electionsWeb sites Use M-ID to securely login to any supporting website without using a passwordDigital signing of documentsSubmit any document to the M-ID web service to be signed digitally; Recipient can verify authenticity of the document at the M-ID serviceSource: id.ee
10Comparison to “regular” bank token: FunctionalityPKI Mobile-IDPIN calculatorOTPWorks with any browser+Not vulnerable to key loggerNot vulnerable to man-in-the-middle attacks-Digital signing supportSSO solutionNo additional hardware to carryBased on PKINo
12Mobile-ID solution role players Mobile-ID Service ProviderOperates Mobile-ID Service Solution provided by SKShould be a party trusted by all service providers to provide identity verification servicesProvides Mobile-ID Service platform to all MNO-s in a country or region of operationEarns a fee for each identity verification transactionCertification AuthorityThe entity that generates and signs the ID certificate for each userCould be an existing trusted CA in the country of operationCA services could be provided by SKEarns a fee for each certificate issuedMobile Network Operator (MNO)Issues the M-ID SIM with SIM Application provided by SKEarns a fee for each SIM issued, as well as a monthly M-ID subscription feeActs as Registration Authority for CANote: A single entity can fulfill multiple roles, e.g. MNO could also be the TSP and the CA.Revenue model:The subscriber has to purchase a Mobile-ID SIMThe subscriber pays a monthly fee for the Mobile-ID serviceEach service provider pays a fee for each identity verification transactionCA receives money for every issued certificate
13Revenue model The subscriber has to purchase a Mobile-ID SIM The subscriber pays a monthly fee for the Mobile-ID serviceEach service provider pays a fee for each identity verification transactionCA receives money for every issued certificate
14Revenue example Assumptions 1 million subscriber base Average 0.01 € per ID verificationSubscriber pays 10 € for Mobile-ID SIM card with a 5 year certificateSubscriber pays 0.7 € per month subscription for the serviceDescriptionYear 1Year 2Year 3M-ID active users67K97K127KAnnual transaction volume10M20M30MTSP: Annual transaction revenue (€)100K200K300KMNO: Annual SIM revenue (€)670KMNO: Annual subscription revenue (€)562K814K1,066KTotal revenue (€)1,332K1,314K1,666K
15SummarySK has technology and competence to serve or set up full Mobile-ID Service SolutionSK is able to deliver with partners the full implementation or support customers with already existing partners
16Contact Thank You! www.sk.ee/en www.id.ee www.mobile.id.ee Margus Arm Head of Sales and MarketingThank You!