The time is ripe for organizations to implement “phishing-resistant multifactor authentication” via FIDO standards, says advocate Andrew Shikiar. Passwords can be guessed or exposed through phishing attacks. The FIDO Alliance’s authentication standards aim to solve the widespread data breach problems associated with password use. Its FIDO2 standard is now integrated in most operating systems, Web browsers and physical security keys, offering resistance to the phished credentials problem.


More

Google Blog: Beyond passwords: a roadmap for enhanced user security

FIDO Security Keys are easier to use and more secure than other forms of 2FA,…

Read More →

ComputerWeekly: New stolen credentials cache puts spotlight on authentication

In this ComputerWeekly story, Steven Murdoch, chief security architect at OneSpan’s Innovation Centre says FIDO…

Read More →

ITU: Time to eliminate the password: New report on next-generation authentication for digital financial services

FIDO specifications enable users to authenticate locally to their device using biometrics in a model…

Read More →