Security News > 2022 > May > SIM-based Authentication Aims to Transform Device Binding Security to End Phishing
A new possession-factor API now aims to do precisely that, replacing knowledge-based credentials, by using the SIM card for possession factor device binding and user authentication, thus reducing the possibility of phishing.
It's inside everyone's mobile phone, and is built on cryptographic security when connecting to mobile network authentication.
ID opens up SIM-based mobile network authentication to every business and app developer, meaning you can leverage the security of the SIM card as a secure possession factor for MFA. SIM-based authentication: the new phishing-resistant possession factor.
The combination of the mobile phone number with its associated SIM card identity is a combination that's difficult to phish as it's a silent authentication check.
Mobile networks routinely perform silent checks that a user's SIM card matches their phone number in order to let them send messages, make calls, and use data - ensuring real-time authentication without requiring a login.
ID API. 10 - Use the phone verification match and SIM card change `no sim change` properties within your application logic.
News URL
https://thehackernews.com/2022/05/sim-based-authentication-aims-to.html