Nowadays, one challenge is that there is no single agreed-upon method for authenticating users: Different service providers and corporate applications require diverse types of username and password combinations, which mean users have to remember a lot of different combinations. Examining typical internet use-cases, it becomes apparent that users mostly have no possibility to verify that the service or website asking for identity credentials is not a fake site, operated with criminal intentions.

Network Operators as Identity Provider

There is a set of good reasons to assume that classical TelCos are well positioned to become identity providers and to offer services based on Identity Management. Typically, TelCo operators have good knowledge about their customer service usage profiles and can easily make an estimate about their spending type. The fact they already have billing relationships with them, is seen as a plus. Secondly, many network operators own CPEs, or to a certain extent mobile phones. Especially a mobile phone offers quite unique authentication capabilities for subscribers.

Across the industry, advanced operators have started to work on becoming identity providers. Operators have started to design new services based on Identity Management concepts, embedding Identity Management technology into convergence activities around wireline, mobile and ISP business.

Identity Management Use Case Examples

By integrating internet-based and GSM-based network technologies together, telecom operators, especially the Mobile network operators, have the capability of offering valuable services to their subscribers and to web service providers. 

The following sketches some possible use-cases where the service offering is based on, or involves, Identity Management. It is assumed in all examples that the network provider operates an Identity Management system for user authentication and for validation of service subscription. In case web-based services are provided in addition to connectivity services, service providers typically employ a separate Identity Management system with adjunct functions.

Use Case 1: In the first example, a mobile user is consuming mobile services and web-based services, involving mobile network infrastructure only: A mobile 3G user accesses his Mobile network operator's portal web store and purchases on-line a promotion item, which is exclusively distributed by the Mobile network operator (e.g. some video spots about the national leagues last games). Making the purchase, he agrees to charge the payment to his mobile phone bill. This grants him to download the video spot from a secure link redirected from the Mobile network operator’s to the content provider. Perceived user benefits would be the single sign-on experience to the mobile network operator and to the external content provider portal, as well as the ability to use credentials from his mobile network operator to complete a transaction with an external content provider.