In 2019, strong customer authentication is expected to ramp up rapidly, driven by support from regulatory initiatives such as Payment Services Directive 2 (PSD2), industry standards such as those from FIDO Alliance and the World Wide Web Consortium (W3C) and also through platform vendors. But adoption will be limited without mechanisms to recover accounts when authenticators are lost. The entire ecosystem is only as strong as the weakest link, so account-recovery mechanisms and policies must be clearly defined. These approaches need to provide secure and acceptable user experiences. This document briefly summarizes recommended practices for all service providers (also referred to as Relying Parties or RPs), including banks and merchants.


More

White Paper: Using FIDO for the EUDI Wallet

This white paper describes the eIDAS2 ecosystem and how to use the FIDO standard with…

Read More →

White Paper: FIDO for e-Government Services

The global COVID-19 pandemic closed offices and forced governments to rapidly move services online, if…

Read More →

White Paper:  Guidance for Making FIDO Deployments Accessible to Users with Disabilities 

In achieving FIDO Alliance’s mission of more secure and password-free authentication, we must ensure the…

Read More →