# Mobiilivarmenne
Page contents
# About Mobiilivarmenne
Mobiilivarmenne is a PKI-based authentication method run by Finnish mobile operators DNA, Elisa and Telia. Mobiilivarmenne is based on certificates that are located on the users’ SIM cards.
To use Mobiilivarmenne, you need a SIM card and an activated subscription from one of the operators. Given these requirements, you can use a mobile device such as a smartphone or feature phone as an authentication method for different services. Currently, only the authentication PIN code is used, although the operators have development projects for activating signature PIN codes. In all Signicat services, the authentication PIN codes are used.
In the production environment, all Mobiilivarmenne accounts roam between the operators. This means that a service provider can establish one agreement with one of the operators to provide the service for all end-users.
Signicat provides Mobiilivarmenne only in the context of the FTN (Finnish Trust Network). Signicat follows FTN’s principles for strong identification. For more details, see Signicat’s identification principles for FTN.
# How to get started with Mobiilivarmenne
Mobiilivarmenne is established as part of the FTN (Finnish Trust Network). Customers that sign up for FTN with Signicat will get all eIDs from the Finnish banks and Mobiilivarmenne through one agreement.
# Typical login and authentication
There are several ways to implement the Mobiilivarmenne authentication option. The mobile images below are from a phone with an Elisa SIM.
The user fills in the mobile phone number that is linked to a SIM card with an active Mobiilivarmenne subscription from one of the mobile operators.
In most cases, only the phone number is needed, but it is possible to ask the network to add a spam prevention code if unsolicited requests are an issue.
After the user has selected Continue (Jatka), a reference code is displayed. This is a string consisting of five letters.
The reference code is sent to the phone as well. The phone will display this reference code and the name of the mobile operator. In this example, Elisa is used. The service provider can vary based on the scenario; here, Telia is used.
The user selects OK to confirm that the strings displayed on the phone and in the browser match.
The user enters a four to eight-digit PIN for authentication. No further input is needed.
# OIDC response example
For a response example from a typical Mobiilivarmenne authentication, see the OIDC response examples page.