FIDO Enterprise Adoption Best Practices

This white paper is aimed at enterprises and government agencies looking to expand their authentication capabilities to include FIDO technology, and have FIDO work in conjunction with other authentication systems such as a Public Key Infrastructure (PKI), Kerberos, and Lightweight Directory Access Protocol (LDAP) that may be in place at the organization.  This document specifically focuses on the use and coexistence of FIDO with a PKI, and answers the following questions:

  • How can FIDO protocols deliver new and/or enhanced business benefits to the enterprise?
  • Which enterprise applications (and application layer protocols) can use PKI?
  • Can FIDO be used to provide similar services as PKI for applications that use or can use public key cryptography?
  • Which enterprise security needs and security threats are best addressed using FIDO?
  • How can an expanded public-key cryptographic system incorporating PKI and FIDO benefit an enterprise?
  • What are the business implications for adding FIDO technology within an enterprise that already operates other authentication systems?

This document covers enterprise and government use cases. Consumer use cases are not in the scope of the whitepaper.


More

White Paper: FIDO Authentication for Moderate Assurance Use Cases

This white paper provides guidance for organizations as they analyze the abilities and features of…

Read More →

White Paper: Replacing Password-Only Authentication with Passkeys in the Enterprise

This white paper describes the need for a more secure and convenient solution for authentication.…

Read More →

White Paper: Introduction: Deploying Passkeys in the Enterprise

This introductory paper provides an overview of the benefits of passkeys in the enterprise and…

Read More →