What is the FIDO Alliance?
The FIDO Alliance is the cross-industry consortia that provides a rich set of specifications and certifications for an emerging and interoperable ecosystem of hardware, mobile and biometrics-based authenticators that can be used at many websites. This ecosystem enables web service providers to deploy strong authentication solutions that reduce password dependencies, provide a simpler user experience and protect against phishing, man-in-the-middle and replay attacks using stolen passwords.
How many member organizations are represented in the FIDO Alliance?
The FIDO Alliance has more than 250 cross-industry, global leader member organizations.
When and why was the FIDO Alliance formed?
The FIDO Alliance was formed in July 2012 to address the lack of interoperability among strong authentication technologies, and remedy the problems users face with creating and remembering multiple usernames and passwords.
What is FIDO Authentication?
FIDO authentication reduces password dependencies and is stronger, private, and easier to use when authenticating to online services.
What are the authentication experiences supported by FIDO standards?
The FIDO standards support two authentication experiences to fit a wide range of use cases: passwordless and second-factor.
The passwordless FIDO authentication experience. Once the user is registered, they no longer need to enter a password to be authenticated to a web service. They simply complete a single gesture with their device – swipe a fingerprint, look at a camera, etc – and are strongly authenticated to the service.
The second-factor FIDO authentication experience. The user presents a second factor –a single gesture such as touching a security key – after their username and password is entered. The strong and simple sector factor allows services to simplify password requirements and still achieve strong security.
How is FIDO authentication simpler than other forms of authentication?
With FIDO, a single gesture – look at a camera, touch a security key, swipe a fingerprint, etc – enables a user to be strongly authenticated to a web service or enterprise application. This is much simpler than remembering all kinds of passwords or other forms of strong authentication that require many additional steps for the user.
How is FIDO authentication stronger than other forms of authentication?
FIDO authentication is based on proven public key cryptography where the private key (and biometric templates when used) is stored on – and never leaves – the user’s device. FIDO authentication protects against phishing, main-in-the-middle and other common attacks against user credentials.
What is the momentum for FIDO authentication today?
FIDO authentication is…
- Enabled on devices from the top five global handset manufacturers
- Available to protect hundreds of millions of end-users’ desktop and mobile apps, with rollouts by Google, PayPal, Samsung, Bank of America, NTT DOCOMO, Dropbox, GitHub and GOV.UK Verify
- On its way to being built into browsers, with FIDO 2.0 web APIs being standardized by the W3C – and backed by major platform vendors such as Google, Microsoft and Mozilla
- Available on more than 220 FIDO Certified products, giving service providers a diverse and flexible range of turnkey options to deploy FIDO standards
What is the appeal of FIDO authentication to web service providers or enterprises?
The specifications and certifications made available by the FIDO Alliance have led to a whole ecosystem of hardware, mobile and biometrics-based devices that enable web service providers or enterprises to more easily roll out strong authentication that is simpler and stronger than other options available today.
What is FIDO Certified?
The FIDO Certification program allows members and non-members to measure compliance and ensure interoperability among products and services that support FIDO specifications. Companies completing certification may display the FIDO® Certified logo to demonstrate to consumers, customers and partners that they have created a high‐quality, interoperable FIDO implementation that is known to work with other FIDO implementations.
How many products today are FIDO Certified?
More than 300 products from global technology leaders are now FIDO Certified, giving service providers a diverse and flexible range of turnkey options to deploy FIDO standards.