The rise in adoption of online services for sensitive tasks such as banking and accessing public services, has led to increased security and data privacy requirements. Many institutions use third-party services for logging in and handling security. So you might enter a single username and password, connecting only once to access a number of different government services. This is convenient for a user, but there are some security risks in the way these third-party services are currently implemented.

I will be working on open MIDaaS project. It stands for Mobile Identity as a Service. The project aims at making a mobile application the centre of user authentication. The app will be like a personal wallet which will store the list of attributes like verified email, address, and phone and credit card numbers. A merchant can request these attributes using push messages, QR code or other means. This will reduce the repetitive form filing and verification steps every time one goes to a new merchant site. I will also create MIDaaS library and hub.

The intern and organizational partner are looking for unique and interesting ways of using mobile devices to help authenticate users and methods of cooperation between a mobile device and another device, a PC for example. The intern will research and implement different authentication techniques on mobile devices. Additionally, it is prudent to study and develop a way of simplifying user interactions while maintaining a high level of security at all times.