CENTRALIZED AUTHENTICATION SERVICES THROUGH MOBILE PHONE MOBILEID SOLUTION CENTRALIZED AUTHENTICATION SERVICES THROUGH MOBILE PHONE

CONTENTS What is MobileID? Features System Structure Deployment Market Overview Deployment Advantages Deployment strategy Target Market Deployment Benefit Cost, revenue and profit Process Deployment Platform Time and Plan for Deployment

MOBILEID INTRODUCTION WHAT IS MOBILEID? Is a centralized authentication service to use certificate and personal identification, and execution of digital signature on mobile phones MobileID As an archive of the private key information (Private Key) and the basic information of the client certificate, such as Serial Number, Public Key ID, vendor (CA) and expiry date Mobile Simcard

FEATURES MobileID is a service which has open structure so it is easy to cooperate as well as deploy with various units such as: Banks Stock Companies Customs Ministry of Industry and Trade VCCI Online Payment Service Companies

FEATURES EASY CONVENIENT Can be used on all types of mobile phone Can be used at anytime, anywhere with mobile signal Customers just need to remember the Pin Code instead of the Username/ Password No need to use computer for connecting to the device (USB PKI Token, OKI Card/ Card Reader Perform many operations through the pre-installed applications on your device: pause, restoration and recovery of certificates Content Layouts

FEATURES SAFETY - SECURITY. MobileID Keys (Private Key & Public Key) is generated on the phone SIM Card with PKCS#1 standard MobileID with the same security to the PKI card or PKI Token. So it is guaranteed about the security and confidentiality. Personally identifiable information and digital signatures with MobileID service are protected by a PIN. SAFETY - SECURITY. MobileID

FEATURES SUPPORT CA PROVIDERS IN VIETNAM Mobile ID supports to add more public CA provides in the future MobileID supports all public CA providers in Vietnam such as: VNPT-CA, CA2, BKAV-CA, Viettel-CA, FPT-CA, CK-CA, Safe-CA, Vina-CA and Newtel-CA

Monthly charge on each transaction for prepaid and postpaid FEATURES FLEXIBLE CHARGING Monthly charge on each transaction for prepaid and postpaid Integrate with Telco’s fee management system to charge the customer’s transaction fee Content Layouts

Increase the number of Telco subscribers FEATURES Saving Cost for Customer Customers do not need to pay for the initial investment as digital signature forms deployed through PKI Token USB or PKI Card / Reader Increase the number of Telco subscribers To use the MobileID services on electronic transaction channels, customer must have phone SIM card → increase the number of customers and revenue for the telco

SYSTEM STRUCTURE

MARKET OVERVIEW MARKET The large number of mobile subscribers The high rate of mobile payment MARKET Banks / securities have their own electronic transaction channels The Government deeply push the Online Port

ADVANTAGES TO DEPLOY Banks/ Securities push payment without cash The State Bank of Vietnam requires user to use digital signature in electronic transaction Banks/ Securities push payment without cash Provide electronic transaction via mobile phone PKI ecosystem rapidly growing

DEPLOYMENT STRATEGY Step 4 Develop service for Banks/ Securities Company with security, simple and convenient Step 3 Service Promotion by many different channels Step 2 Target customers are the customers of Banks and Securities Companies Step 1 The business model is performed toward service

Administration Service Company TARGET MARKET No need to use PKI technology Administration Service Company Banks & Securities Co eCommerce Company TARGET MARKET Not invested PKI Authentication system yet Provide electric payment service Banks & Securities Co - Had PKI system already - Want to use MobileID service for saving cost

DEPLOYMENT BENEFIT MOBILEID Market share Income & Profit Service As the first company deploy  Get the big market share Market share MOBILEID Income & Profit Increase the number of subscribers  Increase the income & profit for Telco Service System Investment  Can provide service for many kinds of customers

COST – REVENUE - PROFIT PROFIT TELCO TOMICA Revenue - Profit Break point in the first year Profit increased steadily over the years More detail in the attached excel file PROFIT Investment Capital Investment Capital 9,590,000,000 VNĐ TELCO TOMICA 3,160,000,000 VNĐ

COMPARISION BETWEEN OTP/ PKI AND MOBILEID User (Mobile Phone) User (PC) Website of service provider Telco Website of service provider CA Provider (Certification Authorities)

PROCESS 1. On-Board Key Generation Public Key (PuK) + Private Key (PrK) 2. Send request to CA (CSR) PKCS#10 SIM CA Information Storage CA: Public Key (PuK) Information Storage CA: Public Key (PuK) PKCS#7 4. Certificate CerID or PuKID 3. Certificate information storage CA

3. Request for Digital signature 1. Request for transaction (eBanking) PROCESS User 3. Request for Digital signature 1. Request for transaction (eBanking) Mobile CA 8. Transaction processing 4. Digital Signature Service Provider System 7. Validator Telco 2. Request for authentication APs 5. Request for certificate information 6. Certificate MSSP TRANSACTION PROCESSING CA

PROCESS PROCESS OF SIGNING & VALIDATOR SIM Server ? CA Request for digital signature Request for digital signature from the service provider Ví dụ: «transfer confirmation for Ms Lan 500$» (GSM 03.48) transfer confirmation for Ms Lan 500$ transfer confirmation for Ms Lan 500$ Receive & show SMS Transaction received Enter PIN Message Hash (SHA) Message Hash (SHA) 52ED879E…. 52ED879E…. Digital Signaute (RSA) Compare 2 hash strings. If match, the digital signature is invalid XXXXXXX…. ? Encrypted SMS CA Signed Hash SIM send digital signature + « PuK ID » to server by SMS Certificate Or CertID Or PuK ID 52ED879E…. Public Key ID (GSM 03.48) XXXXXXX…. Public Key Get lock information & decryption PROCESS OF SIGNING & VALIDATOR

DEPLOYMENT PLATFORM Data server: 03 server Application Server: 02 server SL Server DL580, G7, 2CPU, CPU 8 core, chip X7560 RAM 128GB, HDD 500 GB 2 card HBA, 4 NIC and Card RAID1 Operating system: CenTOS Database: PostgreSQL Server Configuration Software www.themegallery.com

TIME & PLAN FOR DEPLOYMENT Deployment time: 8 weeks Deployment Plan

CONTACT US MINH THONG CARD SOLUTIONS CO., LTD Address: 16/2 Ter Dinh Tien Hoang, Da Kao Ward, 1st District , Ho Chi Minh City Website: www.tomicalab.com Hotline :19006884 Email : sales@tomicalab.com

Thank You!