Security News > 2021 > July > New Zero-Trust API Offers Mobile Carrier Authentication to Developers
To help achieve progress on Zero Trust, there is now a new, easy way to implement continuous user verification by connecting directly to the authentication systems used by mobile operators - without the overhead of processing or storing user data.
The Zero Trust model of identity verification essentially means never trusting that a returning user is whom they claim to be, regardless of their location or previous successful attempts.
Biometrics, on the other hand, is unrealistic as Zero Trust requirements for the average user.
A simpler and safer form of checking possession factor while maintaining Zero Trust is already in users' hands - it's the mobile phone and the SIM card inside it.
SIM-based authentication is invisible to the user - the check of the SIM happens in the background once the user inputs their mobile number.
For continuous Zero Trust authorization in the background using the SIM, SIMCheck is recommended, having the additional benefit of being a quick, easy, and server-side integration.
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/xMQewm8swes/how-to-access-mobile-carrier.html