LANGUAGE
  • 日本語
  • 한국어
  • 简体中文
  • English
  • What is FIDO?
  • Specifications
  • FAQ’s
  • Knowledge Base
  • Join
FIDO Alliance
  • The Alliance
    About FIDO Alliance
    • Alliance Overview
    • History of FIDO Alliance
    • FIDO Leadership
    • Legal & Logo Usage
    • Code of Conduct
    • Contact Us
    Our Membership
    • FIDO Members
    • Liaison Partners
    • Working Groups
    • Committees and Study Groups
    Join FIDO Alliance
    • Membership Benefits
    • Membership Application
    Newsletter Sign-Up
    FIDO Explained
  • Standards & Technology
    Work Areas
    • FIDO Authentication
    • Identity Verification & Binding
    • Internet of Things
    FIDO Authentication
    • How FIDO Works
    • Passkeys
    • FIDO2
    • FIDO Alliance Metadata Service
    • FIDO Privacy Principles
    • FIDO Design System
    • FIDO UX Guidelines
    Specifications
    • User Authentication Specifications Overview
    • Download Authentication Specifications
    • IoT Specifications Overview
    • Download IoT Specifications
    Developers
    • Getting Started
    • Developer Resources
    • FIDO Developer Challenge 2022 – India
  • Discover FIDO
    Getting Started Knowledge Base
    • Intro to FIDO
    • Building the Business Case
    • Buying, Building & Partnering
    • Implementation & Deployment
    Adoption
    • FIDO Case Studies
    • Market Solutions
    • Government & Public Policy
    • PSD2 Compliance
    • Deployment Showcase
    • FIDO Government Deployments and Recognitions
    • Enterprise Journey Map
    Resources
    Showcase
    Research
    Videos
    White Papers
    Presentations
    FAQ
  • FIDO® Certified
    FIDO Certification Programs
    • FIDO Certified Professional Program
    • Functional Certification
    • Authenticator Certification
    • Biometric Component Certification
    • Document Authenticity (Doc Auth)
    • Certification Maintenance and Updates
    Get Certified
    • Certification Overview
    • Certification Registration
    • Certification Fees
    • Secretariat
    • TMLA
    Certified Products
    • FIDO® Certified Products
    • FIDO Certified Showcase
  • News & Events
    Latest Updates
    • FIDO News Center
    • Events Calendar
    • FIDO in the News
    • Press Center
  • What is FIDO?
  • Specifications
  • FAQ’s
  • Knowledge Base
  • Join
Language
  • 日本語
  • 한국어
  • 简体中文
  • English
search
  • About FIDO Alliance
    • Alliance Overview
    • History of FIDO Alliance
    • FIDO Leadership
    • Legal & Logo Usage
    • Code of Conduct
    • Contact Us
    1. Home 
    2. Authenticator Level 1+

    Authenticator Level 1+

    Level 1+ tests the authenticator’s (SW implemented) defense against large scale software attacks and provides greater assurance of defense compared to Level 1. 

    The Security and Privacy Requirements for Level 1+ defends itself even if the device operating system is compromised. At L1+ white box cryptography and other software protection techniques are used rather than an AROE. 

    L1+ authenticators are similar to L1 authenticators but with Whitebox cryptography. 

    Level 1+ Security Evaluations is completed by a FIDO Accredited Security Laboratory and includes penetration testing.


    Functionally Certified Authenticator Implementation

    For a Functionally Certified Authenticator seeking L1+ Certification, the Functional Certification requirements were met by the original Functional Certification (there are no new Interoperability Requirements for L1+), so the next step is to follow the process included in the Authenticator Certification Policy, and on the Authenticator Certification Levels page, to complete the Vendor Questionnaire.

    It is required that the Level 1+ Vendor Questionnaire be evaluated by a FIDO Accredited Security Laboratory as part of the Security Evaluation step of Authenticator Certification. The Vendor is responsible for choosing and working with one of the FIDO Accredited Security Laboratories to complete the Security Evaluation.

    L1+ Application of Attack Potential (AAP):

    This document provides a method to calculate the attack potential required by an attacker to succeed in illegally use a software L1+ FIDO product as defined in FIDO Security Reference. As such, it provides guidance for evaluation laboratories on the attack methods that must be considered in a FIDO L1+ evaluation.

    L1+ AAP (HTML)
    L1+ AAP (PDF)

    Next Steps

    Depending on your current implementation and the Level you wish to complete the process varies slightly. The scenarios below will help determine the next steps:

    Client or Server Implementation

    • Certification levels are only for Authenticators, Clients and Servers can complete Functional Certification.

    New Authenticator Implementation

    • If you are completing FIDO Certification for the first time for this implementation, the first step for certification is to start at Functional Certification.
    • Functional Certification tests conformance to the specifications and Interoperability with FIDO Clients and Servers.

    If you are completing FIDO Certification for the first time for this implementation, the first step for certification is to start at Functional Certification.

    Functional Certification tests conformance to the specifications and Interoperability with FIDO Clients and Servers.

    No Security Requirements are tested during Interoperability Testing for L1+, but the Functional Certification steps are still required.

    After Functional Certification, the implementation continues on to the process outlined in the Authenticator Certification Policy, and on the Authenticator Certification Levels page.

    It is required that the Level 1+ Vendor Questionnaire be evaluated by a FIDO Accredited Security Laboratory as part of the Security Evaluation step of Authenticator Certification. The Vendor is responsible for choosing and working with one of the FIDO Accredited Security Laboratories to complete the Security Evaluation.

    All L1+ implementers must create an account for FIDO Certification, you can request an account, or login.


    L1+ Certification Fees

    Fees are per implementation certified and must be paid before a Certificate will be issued.

    For an overview of the different Certification options and fees, please review the Authenticator Certification Scenarios page.

    Functional Certification Fees

    • FIDO Member: $6,000 USD
    • Non-Member: $7,800 USD

    L1+ Certification Fees

    • FIDO Member: $9,000 USD
    • FIDO Member Derivative: $1,000 USD
    • FIDO Member Delta: $1,200 USD
    • Non-Member: $15,600 USD
    • Non-Member Derivative: $1,250 USD
    • Non-Member Delta: $2,100 USD

    Laboratory Security Evaluation Fees

    • There is no FIDO Fee for a Laboratory Evaluation. The cost for the Security Evaluation will depend on the Accredited Security Laboratory used by the Vendor.

    Implementer Dashboard

    Implementers can Login to view their Dashboard.

    Login

    FIDO Alliance
    • What is FIDO?
    • How FIDO Works
    • FIDO2
    • Alliance Overview
    • Terms of Use
    • User Authentication Specifications Overview
    • Certification Overview
    • Knowledge Base
    • Press Center
    • Privacy Policy

    Join the Community

    Get the Latest Updates Participate in FIDO-Dev Forum

    Categories

    • Announcements
    • Building the Business Case
    • Buying, Building & Partnering
    • FIDO in the News
    • Implementation & Deployment
    • Intro to FIDO
    • Market Research
    • Perspectives
    • Uncategorized
    Authenticator Level 1+

    Document Authenticity (DocAuth) Certification Program for Remote Identity Verification

    • Introduction
    • Certification Process Overview
    • Certification Fees
    • Accredited Labs
    • Get Certified
    • Resource Documentation
    Sign up for updates!Get news from FIDO Alliance in your inbox.

    By submitting this form, you are consenting to receive communications from: FIDO Alliance, 3855 SW 153rd Drive, Beaverton, OR 97003, US, http://www.fidoalliance.org. You can revoke your consent to receive emails at any time by using the unsubscribe link found at the bottom of every email.

    First Name
    Last Name
    Email
    Country
    Company
    Job Title
    • 日本語
    • 한국어
    • 简体中文
    • English