We have a client requirement to authenticate a Mobile device whenever it accesses a specific URL, Since this is a rarely used functionality so this was decided to be done in Website only, The website would be based on ASP.net/Web API for further calls
So kindly help me with the below questions with respect to the Authentication of a Mobile Device when accessing a Specific URL,
1) Do we have any way which can be used to authenticate a mobile device based on its unique identification?
2) But based on our analysis it is considered as a security risk to obtain data like IMEI , IMSI, MSISDN or Phone Number etc? Also efforts to extract those data on website access also failed, So do we have any other unique data which can be used as an authentication parameter?
3) If none of the above is feasible , Kindly suggest us any Ideas where a specific mobile device can be authenticated whenever it accesses a URL without any User Login or One Time Password or Flash Call authentication?
4) The URL being accessed will be provided to the user using a 3rd Party SMS service Provider, is there any data in SMS provider that can be leveraged for the specific authentication?
Thanks,
B