@nov

FIDO : Fast IDentity Online

@nov

Samsung And PayPal Move Against Apple With Galaxy S5 Finger Swipe Payments - Forbs

FIDO Alliance Board

http://fidoalliance.org/membership/members

Overview

FIDO Authenticator

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

http://fidoalliance.org/specifications

UAF Specs (Password-less)

FIDO UAF Architectural Overview

FIDO UAF Protocol Specification

FIDO UAF Application API and Transport Binding Specification

FIDO UAF Authenticator-specific Module API

FIDO UAF Authenticator Commands

FIDO UAF Authenticator Metadata

FIDO UAF Registry of Predefined Values

FIDO Security Reference

FIDO Technical GlossaryUAF : Universal Authentication Framework

U2F Specs (2-factor)

FIDO U2F Architectural Overview

FIDO U2F Javascript API

FIDO U2F Raw Message Formats

FIDO U2F USB Framing of APDUs

FIDO U2F Implementation Considerations

FIDO U2F Application Isolation through Facet Identification

FIDO Security Reference

FIDO Technical Glossary

UAF : Universal 2nd Factor

U2F Specs (2-factor)

FIDO U2F Architectural Overview

FIDO U2F Javascript API

FIDO U2F Raw Message Formats

FIDO U2F USB Framing of APDUs

FIDO U2F Implementation Considerations

FIDO U2F Application Isolation through Facet Identification

FIDO Security Reference

FIDO Technical Glossary

UAF : Universal 2nd Factor

(´･_･`)ﾂﾗﾀﾝ

UAF Protocol Phases

Discovery

FIDO enabled or not

Available Authenticators

Registration

Authentication

Transaction Confirmation

Authentication + “Secure Display” (?)

Deregistration

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Init

Reg. Request

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Register Request

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Select Authenticator & Authenticate

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Select Authenticator & Authenticate

Key Generation

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

AssertionAuth

Key Generation

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Reg. Response

AssertionAuth

Key Generation

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Select Authenticator & Authenticate

Reg. Response

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Reg. Response

Verify Authenticator

Key Generation

AssertionAuth

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Init

Auth Request

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Init

Auth Request

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Init

Auth Request

AssertionAuth

Fetch Key

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Auth Response

Init

Auth Request

AssertionAuth

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO ServerAuthenticate

Auth Response

Init

Auth Request

FIDO Ready™ http://fidoalliance.org/adoption/fido-ready

FIDO Alliance Does..

Define FIDO Specifications

Trust “Attestation Root Certificate(s)”

Issue “Authenticator Vendor Code”

Vendors MUST join

“FIDO Ready™” Program