Mobile signature service integration
Venho, Joonas (2012)
Metropolia Ammattikorkeakoulu
2012
All rights reserved
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-2012060912320
https://urn.fi/URN:NBN:fi:amk-2012060912320
Tiivistelmä
Tivoli Access Manager for e-business (TAMeb) is an IBM Security Systems product for single sign-on solutions (SSO) on the web. It is software for handling authentication and authorization issues and managing the security policies of application resources.
In addition to normal authentication TAMeb provides an interface for external authentication. The recent appearance of mobile signature service in Finland, which was developed jointly by DNA, Elisa and Sonera, raised the question of whether the service could be integrated to the Tivoli Access Manager with an external authentication interface. As a result this project was started and the purpose of it was to build working test software. The goal was achieved by using the test services provided by the operators. These operators are part of the Finnish Federation for Communications and Teleinformatics (FiCom).
The service is based on European Telecommunication Standards Institute (ETSI) standards which specify the Mobile Signature Service and the mobile signature roaming services. According to these standards the FiCom Implementation guideline was introduced to Finnish application providers. The solution developed in this project is based on that documentation.
The solution itself worked as expected. The authentication request was sent from the solution to the test service, the mobile telephone received the authentication request sent by the test service and the user information was sent back to the software.
The final version of the solution requires more fine-tuning and testing before actual implementation but the current test phase already shows that the concept works. The integration already provides new business possibilities as it is.
In addition to normal authentication TAMeb provides an interface for external authentication. The recent appearance of mobile signature service in Finland, which was developed jointly by DNA, Elisa and Sonera, raised the question of whether the service could be integrated to the Tivoli Access Manager with an external authentication interface. As a result this project was started and the purpose of it was to build working test software. The goal was achieved by using the test services provided by the operators. These operators are part of the Finnish Federation for Communications and Teleinformatics (FiCom).
The service is based on European Telecommunication Standards Institute (ETSI) standards which specify the Mobile Signature Service and the mobile signature roaming services. According to these standards the FiCom Implementation guideline was introduced to Finnish application providers. The solution developed in this project is based on that documentation.
The solution itself worked as expected. The authentication request was sent from the solution to the test service, the mobile telephone received the authentication request sent by the test service and the user information was sent back to the software.
The final version of the solution requires more fine-tuning and testing before actual implementation but the current test phase already shows that the concept works. The integration already provides new business possibilities as it is.