The GSMA Open Gateway initiative has launched with eight network APIs, which include SIM Swap, Quality on Demand, Device Status (Connected or Roaming Status), Number Verification, Edge Site Selection and Routing, Number Verification (SMS 2FA), Carrier Billing – Check Out and Device Location (Verify Location). The GSM Association (GSMA) Open Gateway APIs offer a unifying framework for mobile developers worldwide. In this blog post, I focus on the Number Verification API and highlight its various use cases. I elaborate on how this API is essential for applications in the mobile industry. In an interaction between the user and a service, the identity of the user can be verified by the Number Verification API, providing security to the interaction. There are two services with which the API achieves identity verification. The first is Number Verification with SMS 2FA: the API delivers a one-time password (OTP) through SMS to the phone number (MSISDN) supplied by the user. The validation of this shortcode can verify that the user is in possession of the mobile device carrying the indicated MSISDN. The other method is the Number Verify API, which enables seamless authentication to verify the identity of the user. The API carries out an authentication check via the

mobile network used to access the service. Through this check, the phone number (MSISDN) provided by the user, can be compared to the MSISDN of the mobile device that's accessing the service, thus performing verification. By establishing an extra layer of security over the username/password login method, which forms "two-factor authorization," many applications can be made safer. Such applications are as follows: Identity Verification in Onboarding Users to Digital Services: A primary use of number verification is when onboarding users to a digital service. In many industries, identity verification is required when accessing digital services. By demanding authorization with a mobile number, the service can verify that the user is in possession of the device being used to access the service. This helps ensure the legitimacy of the user during account creation and prevents the creation of fake accounts. Secure Financial Transactions in Digital Services: Banking or retail services often require two-factor authorization when carrying out financial transactions. Authorization maintains that no transaction can be made that is not approved by the user. By establishing a trusted connection to the user, through the phone number verification offered by the API, the financial system is secured against fraud and theft. Enhancing Account Safety: In safe digital services, identity authentication is required when users ask to manage essential account details. An operation such as changing passwords can compromise the user's access to their account, so this operation must be well-guarded. Safe digital services may monitor requests to access a user's account, and demand authorization when needed. By requesting two-factor authorization through number verification, the service can prevent account theft and other fraud, and protect the safety of their users and their system. As an overview, number verification is an important way of verifying user identity. It provides essential security for the user and for the service provider. It can help prevent account theft or financial fraud. The GSMA Open Gateway API framework and the development of mobile network solutions, which provide security and safety, are essential for the modern world.