Blog

FIDO TechNote: The Growing Role of Token Binding

Written by Bonnie Martin on .

By Adam Powers FIDO specifications are part of a community of interlinking specifications. FIDO Authentication depends on specifications from the World Wide Web Consortium (W3C), Internet Engineering Task Force (IETF) and others to define how secure authentication should work. We are excited...

FIDO TechNotes: The Truth about Attestation

Written by Andrew Shikiar on .

Adam Powers, FIDO Alliance Technical Director There is a frequently mentioned but little understood term in FIDO: attestation. Even engineers implementing FIDO products are often confused with how attestation works or why it is needed. This Tech Note is an attempt to clarify attestation and its...

Three Lessons From the Timehop Data Breach

Written by Andrew Shikiar on .

Brett McDowell, Executive Director, FIDO Alliance The Timehop data breach that affected 21 million users offers a teachable moment for the rest of the online services industry, especially in light of new GDPR and PSD2 requirements taking hold in Europe. As Timehop explained, “the breach...

GDPR arrives in Europe – FIDO’s perspective

Written by Andrew Shikiar on .

The General Data Protection Regulation (GDPR) finally comes into effect on Friday, May 25, 2018. The most significant change to European data protection laws in twenty years, GDPR will not only impact firms resident in the European Union (EU), but around the world, as any organisation doing...

Perspectives on World Password Day

Written by Andrew Shikiar on .

Brett McDowell, Executive Director, FIDO Alliance   World Password Day was started by FIDO Board member Intel seven years ago, and much has changed in that time. The world finally has a better call-to-action than simply changing passwords and hoping the year-over-year growth in data breaches...