-
Notifications
You must be signed in to change notification settings - Fork 21
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Adding a '+' to the phone number before hashing should be mandatory, not optional #65
Comments
+1 on @eric-murray proposal as we get same discussion in Orange |
I would prefer to remove |
I would actually agree with both options. Remove the hashing as it does not add much security and make the '+' required. And make it required both in request body and in the response (in the operations that return a phoneNumber). Because having it optional will bring other issues, for example the API Client might receive the phone number with '+' in one operator and without it in other, so it needs to have further logic to handle it. |
I think we have some consensus then to remove the hash parameter. Eric will you produce the PR? |
I'm not directly involved in this sub-project, so would look to a maintainer to raise the PR. But maybe they prefer to discuss this during the regular meetings first. |
With regard to requiring + with the E.164, the ITU E.164 spec (International operation – Numbering plan of the |
@ECORMAC In the ITU-T E.123 referenced above: Given that having it optional brings more problems than benefits, I think we could keep it as required and refer to these paragraphs which do not oblige perse, but recommend its use. WDYT? |
Yes, we should include it :D |
@chrishowell This point seems to be outside of the scope of this issue (adding '+' to the phone number) - would you mind to open an explicit issue for that? |
I think removing the hashing should be better thought through, since it will impact the privacy of end users. In general (just like with KYC match), hashing is currently applied to prevent that the MNO learns more about the users' data than they should. For example, users may have more than one phone number in use, and by the this the telco can become aware of other phone numbers that end user has in use, in case the wrong phone number is entered. That is the reason in the current Mobile Connect Number Verify specs the hashing is used as a privacy protecting measure. |
Short question besides: Will the phone_number in the access-token be provided as clear-text only or can it also be a hashed-number? |
Problem description
Phone number optionally prefixed with '+' before hashing? Why is this an option?
This means that the supplied hashed phone number must be compared to two hashes of the true phone number to determine if they match. Some have claimed this is a "feature" for those who cannot read a specification or format phone numbers properly, but I think this is a bug that increases implementation complexity and processing time.
Expected behaviour
Adding '+' before hashing should be mandatory
Alternative solution
Remove option for hashing completely. It adds no data security for such a small plaintext space.
Additional context
The text was updated successfully, but these errors were encountered: