In 2019, strong customer authentication is expected to ramp up rapidly, driven by support from regulatory initiatives such as Payment Services Directive 2 (PSD2), industry standards such as those from FIDO Alliance and the World Wide Web Consortium (W3C) and also through platform vendors. But adoption will be limited without mechanisms to recover accounts when authenticators are lost. The entire ecosystem is only as strong as the weakest link, so account-recovery mechanisms and policies must be clearly defined. These approaches need to provide secure and acceptable user experiences. This document briefly summarizes recommended practices for all service providers (also referred to as Relying Parties or RPs), including banks and merchants.
-
About The AllianceAlliance MembershipSpecifications
-
FIDO User Authentication
-
FIDO Device Onboard
-
FIDO CertificationsFind Certified ProductsFIDO Accredited LaboratoriesAdministrative
-
Discover FIDO
-
Latest Updates
More FIDO White Papers
Passkeys and Verifiable Digital Credentials: A Harmonized Path to Secure Digital Identity
Editors Christine Owen, 1Kosmos Teresa Wu, IDEMIA Public Security Abstract Around the world, government entities…
White Paper: Addressing Cybersecurity Challenges in the Automotive Industry
Abstract As the automotive industry transitions toward software-defined vehicles, autonomous technologies, and connected services, cybersecurity…
White Paper: DBSC/DPOP as Complementary Technologies to FIDO Authentication
Editors Shane Weeden, IBMAn Ho, IBM Abstract Session hijacking is a growing initial attack vector…
