>For many WAP phones and its variations, there is an associated >identifier for each phone that identifies the hardware. When possible, >it would be worthwile to use those as a part of credentials. As a part of, yes - but how easy would it be to spoof that hardware key? -Shade