link
Developer Pages

# Mobiilivarmenne

Page contents

# About Mobiilivarmenne

Mobiilivarmenne is a PKI-based authentication method run by Finnish mobile operators DNA, Elisa and Telia. Mobiilivarmenne is based on certificates that are located on the users’ SIM cards.

To use Mobiilivarmenne, you need a SIM card and an activated subscription from one of the operators. Given these requirements, you can use a mobile device such as a smartphone or feature phone as an authentication method for different services. Currently, only the authentication PIN code is used, although the operators have development projects for activating signature PIN codes. In all Signicat services, the authentication PIN codes are used.

In the production environment, all Mobiilivarmenne accounts roam between the operators. This means that a service provider can establish one agreement with one of the operators to provide the service for all end-users.

Signicat provides Mobiilivarmenne only in the context of the FTN (Finnish Trust Network). Signicat follows FTN’s principles for strong identification. For more details, see Signicat’s identification principles for FTN.

# How to get started with Mobiilivarmenne

Mobiilivarmenne is established as part of the FTN (Finnish Trust Network). Customers that sign up for FTN with Signicat will get all eIDs from the Finnish banks and Mobiilivarmenne through one agreement.

# Typical login and authentication

There are several ways to implement the Mobiilivarmenne authentication option. The mobile images below are from a phone with an Elisa SIM.

The user fills in the mobile phone number that is linked to a SIM card with an active Mobiilivarmenne subscription from one of the mobile operators.

click-to-zoom

In most cases, only the phone number is needed, but it is possible to ask the network to add a spam prevention code if unsolicited requests are an issue.

After the user has selected Continue (Jatka), a reference code is displayed. This is a string consisting of five letters.

click-to-zoom

The reference code is sent to the phone as well. The phone will display this reference code and the name of the mobile operator. In this example, Elisa is used. The service provider can vary based on the scenario; here, Telia is used.

click-to-zoom

The user selects OK to confirm that the strings displayed on the phone and in the browser match.

click-to-zoom

The user enters a four to eight-digit PIN for authentication. No further input is needed.

# OIDC response example

For a response example from a typical Mobiilivarmenne authentication, see the OIDC response examples page.

# Mobiilivarmenne support

# Mobiilivarmenne pages by the operators

Name Link
DNA https://tuki.dna.fi/org/dna-fi/d/mika-on-mobiilivarmenne-1/ (opens new window)
Elisa https://elisa.fi/varmenne/ (opens new window)
Telia https://www.telia.fi/asiakastuki/palvelut/telia-mobiilivarmenne/telia-mobiilivarmenne (opens new window)

# Customer service pages by the operators

Name Link
DNA https://www.dna.fi/yhteystiedot (opens new window)
Elisa https://elisa.fi/asiakaspalvelu/yhteystiedot/ (opens new window)
Telia https://www.telia.fi/asiakastuki/yhteystiedot (opens new window)
Last updated: 20/09/2023 12:20 UTC

Mobile app-initiated operations via OIDC