e-government services (authentication and transaction signing) for the national cyber security services and management. Involves government, city council and selected industry such as bank, telco, transport and etc.
Norwegian healthcare sectorDescription:
Targeting the pharmacies, and it is mainly built on Windows technology. The FIDO authenticator is used by the pharmacist to login to her account at the Windows workstation, which gives access to the proper applications and systems. This system is in production at one pharmacy group.
Providing mobile authentication solutions for the medical staff. In this case, FIDO is used as authentication solution using Android and Apple iOS smartphone apps. This will be tested and evaluated in a proof of concept during the rest of 2020.
Korea National Intelligence ServiceProgram:
Korea National Intelligence Service (a.k.a. KCIA) published its 3rd version of Security Requirements for Government Agencies, which recommends FIDO Authentication as a strong cryptographic 2nd factor option for end user security.
Ministry of Interior, Ministry of FinanceProgram:
Taiwan FidO is a mobile authentication service deployed by Ministry of Interior. The citizen can register Taiwan FidO service with personal citizen certificate, and log in to many e-government services using the registered Taiwan FidO account.
Electronic Transactions Development Agency (ETDA)Program:
“Development and Installation of Registration System on Mobile Devices for Use as Authenticator (TOR released in August 2020)”Description:
ETDA is developing a FIDO UAF system which will provide enterprise or organizations as an reference to deploy their mobile authentication application.
FIDO Technology: FIDO2
National Health ServiceProgram:
NHS Identity Authentication ServiceDescription:
NHS Identity currently authenticates against around 1 million care worker identities in its repository; registered and checked to a high level of confidence several new methods of verifying the subject, such as one time passwords, push notifications, knowledge based secrets, biometric touch id, Windows Hello, cryptographic certificates, FIDO2 supported devices and OIDC Smartcards
Cabinet Office, Government Digital ServiceProgram:
GPG 44 – Using authenticators to protect an online serviceDescription:
The U.K.’s Government Digital Service published updated guidance, Using authenticators to protect an online service (GPG 44). Following NIST, the term ‘credential’ has been replaced with “authenticator”. Transaction monitoring is noted and “High Quality Authenticators” is defined if it has been independently tested to prove it meets industry standards, such as the Common Criteria guidelines, FIDO or FIPS 140-2.