February 14, 2014

Can the FIDO Alliance Help Obsolete Username Password Authentication?

John Oltsik, NetworkWorld

What does this specification do? Simply stated, it provides standard protocols so that devices (like smart phones, tablets, PCs, IoT sensors, etc.) can easily participate in PKI infrastructure using just about any type of authentication technology as one of the factors. Don’t have a thumbprint reader on your phone? No problem. FIDO can find some other unique identifier (a TPM chip for example) and use this to create a key pair and act as the root of trust. Additionally, FIDO can create unique key pairs for different applications and services (i.e. Windows logon, Facebook, Paypal, etc.) and FIDO provides an abstraction layer so the actual private keys never leave the device and remain secure.

MORE FIDO in the News


FIDO Alliance Launches FIDO Certified Professional Program

As FIDO adoption gathers momentum globally, the program aims to...

October 18, 2021

FIDO Alliance Research Tracks Passwordless Authentication as It Moves Mainstream

New Online Authentication Barometer from the FIDO Alliance reveals consumer...


IT-Zoom: The Passwordless Decade Begins

Authentication via password is neither convenient nor secure. Access technologies...

October 15, 2021

TEISS: SMS Authentication: why it’s bad (and what to do instead)

Twitter’s Account Security Report shows users still opt for SMS...

Download Authn Specs
Sign up for updates!Get news from FIDO Alliance in your inbox.

By submitting this form, you are consenting to receive communications from: FIDO Alliance, 3855 SW 153rd Drive, Beaverton, OR 97003, US, http://www.fidoalliance.org. You can revoke your consent to receive emails at any time by using the unsubscribe link found at the bottom of every email.