ITU-T X.1158 PDF

This Recommendation provides multi-factor authentication mechanisms using a mobile device. It describes the weakness of a single-factor authentication mechanism, identifies the need for multifactor authentication, and provides various combinations of multi-factor authentication mechanisms using a mobile device. General security requirements to reduce the threats associated with a singlefactor authentication mechanism are provided. In addition, typical multi-factor authentication protocols are given. This Recommendation assumes the use of mobile devices with subscriber identity module (SIM) card capability, but should not exclude the use of virtual SIM card capability. Specifically, this Recommendation is applicable to all applications using mobile devices. This Recommendation is based on the framework described in [ITU-T X.1154].