Table of Contents - X.1280 (03/2024) - Framework for out-of-band server authentication using mobile devices

1	Scope
2	References
3	Definitions
	3.1	Terms defined elsewhere
	3.2	Terms defined in this Recommendation
4	Abbreviations and acronyms
5	Conventions
6	Introduction
7	Framework for out-of-band server authentication
	7.1	Roles and components
	7.2	Server authentication information
	7.3	Authentication model
8	Procedures for out-of-band server authentication
	8.1	Out-of-band server authenticator installation and registration
	8.2	Server authentication request
	8.3	Server authentication information generation and presentation
	8.4	Server authentication
	8.5	User authentication and service provision
9	Security threats and security requirements
	9.1	Security threats
	9.2	Security requirements
Annex A � Extra procedure for out-of-band server authentication
	A.1	User password automatic renewal
Appendix I � Relationship between security requirements and threats
Appendix II � Use cases of out-of-band server authentication model
	II.1	Websites and applications
	II.2	IdPs
	II.3	Operating systems
Appendix III � Relationship to other authentication technologies
Bibliography