Nowadays, the owners of modern mobile phones are able to use a vast amount of different services, most of them requiring some kind of authentication. Until now, the user had to manage with different credentials manually, which can become a considerable nuisance, when the amount of used services grows. Also, this hassle with the credentials can also create security problems, for example, as the users use the same, weak passwords over and over again for different services. Also, if the service providers should provide all the necessary credentials to the users, it would be very expensive.The Generic Authentication Architecture (GAA) is 3GPP's solution to the aforementioned problems. It provides fresh key material for clients and servers that require shared secret based authentication, and signs certificates for those applications which require asymmetric authentication. The users' equipments authenticate themselves to the operator's GAA service by existing 3G or 2G authentication protocols, and in the process receive new keys. Also the services, which the users want to use, are able to fetch them from GAA. This way the clients and servers are able to share secrets.In addition to other services, the method described above can also be used to authenticate clients to a public key infrastructure, which can then be asked to sign certificates for the client's public key(s).GAA obviously eases the use of different services for users, but also creates new business possibilities for the operators and service providers. However, there are also problems: the operator might not be trustworthy to authenticate everything, for example electronic voting or banking. Also, the operator is able to bill from authenticating to other providers' services, which increases clients' costs.