FIDO alliance #idcon vol.18

30
@nov

description

 

Transcript of FIDO alliance #idcon vol.18

Page 1: FIDO alliance #idcon vol.18

@nov

Page 2: FIDO alliance #idcon vol.18

FIDO : Fast IDentity Online

@nov

Page 3: FIDO alliance #idcon vol.18
Page 4: FIDO alliance #idcon vol.18
Page 5: FIDO alliance #idcon vol.18

Samsung And PayPal Move Against Apple With Galaxy S5 Finger Swipe Payments - Forbs

Page 6: FIDO alliance #idcon vol.18
Page 7: FIDO alliance #idcon vol.18

FIDO Alliance Board

http://fidoalliance.org/membership/members

Page 8: FIDO alliance #idcon vol.18

Overview

FIDO Authenticator

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Page 9: FIDO alliance #idcon vol.18

http://fidoalliance.org/specifications

Page 10: FIDO alliance #idcon vol.18

UAF Specs (Password-less)

FIDO UAF Architectural Overview

FIDO UAF Protocol Specification

FIDO UAF Application API and Transport Binding Specification

FIDO UAF Authenticator-specific Module API

FIDO UAF Authenticator Commands

FIDO UAF Authenticator Metadata

FIDO UAF Registry of Predefined Values

FIDO Security Reference

FIDO Technical GlossaryUAF : Universal Authentication Framework

Page 11: FIDO alliance #idcon vol.18

U2F Specs (2-factor)

FIDO U2F Architectural Overview

FIDO U2F Javascript API

FIDO U2F Raw Message Formats

FIDO U2F USB Framing of APDUs

FIDO U2F Implementation Considerations

FIDO U2F Application Isolation through Facet Identification

FIDO Security Reference

FIDO Technical Glossary

UAF : Universal 2nd Factor

Page 12: FIDO alliance #idcon vol.18

U2F Specs (2-factor)

FIDO U2F Architectural Overview

FIDO U2F Javascript API

FIDO U2F Raw Message Formats

FIDO U2F USB Framing of APDUs

FIDO U2F Implementation Considerations

FIDO U2F Application Isolation through Facet Identification

FIDO Security Reference

FIDO Technical Glossary

UAF : Universal 2nd Factor

(´・_・`)ツラタン

Page 13: FIDO alliance #idcon vol.18

UAF Protocol Phases

Discovery

FIDO enabled or not

Available Authenticators

Registration

Authentication

Transaction Confirmation

Authentication + “Secure Display” (?)

Deregistration

Page 14: FIDO alliance #idcon vol.18

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Page 15: FIDO alliance #idcon vol.18

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Init

Reg. Request

Page 16: FIDO alliance #idcon vol.18

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Register Request

Page 17: FIDO alliance #idcon vol.18

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Select Authenticator & Authenticate

Page 18: FIDO alliance #idcon vol.18

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Select Authenticator & Authenticate

Key Generation

Page 19: FIDO alliance #idcon vol.18

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

AssertionAuth

Key Generation

Page 20: FIDO alliance #idcon vol.18

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Reg. Response

AssertionAuth

Key Generation

Page 21: FIDO alliance #idcon vol.18

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Select Authenticator & Authenticate

Reg. Response

Page 22: FIDO alliance #idcon vol.18

Registration

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

init

Reg. Request

Reg. Response

Verify Authenticator

Key Generation

AssertionAuth

Page 23: FIDO alliance #idcon vol.18

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Page 24: FIDO alliance #idcon vol.18

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Init

Auth Request

Page 25: FIDO alliance #idcon vol.18

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Init

Auth Request

Page 26: FIDO alliance #idcon vol.18

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Init

Auth Request

AssertionAuth

Fetch Key

Page 27: FIDO alliance #idcon vol.18

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO Server

Auth Response

Init

Auth Request

AssertionAuth

Page 28: FIDO alliance #idcon vol.18

Authentication

User Agent

End-User Device

FIDO Authenticator

FIDO Client

Relying Party

Web Apps

FIDO Authenticator Metadata

FIDO ServerAuthenticate

Auth Response

Init

Auth Request

Page 29: FIDO alliance #idcon vol.18

FIDO Ready™ http://fidoalliance.org/adoption/fido-ready

Page 30: FIDO alliance #idcon vol.18

FIDO Alliance Does..

Define FIDO Specifications

Trust “Attestation Root Certificate(s)”

Issue “Authenticator Vendor Code”

Vendors MUST join

“FIDO Ready™” Program


“Identity Standards Updates - Bringing Government and ... · “Identity Standards Updates – FIDO” Brett McDowell, Executive Director, FIDO Alliance brett@fidoalliance.org 1

“Identity Standards Updates - Bringing Government and ... · “Identity Standards Updates – FIDO” Brett McDowell, Executive Director, FIDO Alliance [email protected] 1

UAF Architectural Overview - FIDO Alliance · FIDO UAF Architectural Overview Universal Authentication Framework (UAF) Protocol The UAF protocol allows online services to offer password-less

UAF Architectural Overview - FIDO Alliance · FIDO UAF Architectural Overview Universal Authentication Framework (UAF) Protocol The UAF protocol allows online services to offer password-less

#iiw 13th report at #idcon 10th

#iiw 13th report at #idcon 10th

FIDO and beyond - where authentication meets identification … · introduction into regular PT operation •Mobile Applications & Test FIDO Alliance. AUthentication Open eID / PA

FIDO and beyond - where authentication meets identification … · introduction into regular PT operation •Mobile Applications & Test FIDO Alliance. AUthentication Open eID / PA

Functional Certification Program Policy€¦ · The FIDO Certification program upholds the latest standards developed by the FIDO Alliance. When a new FIDO Specification version is

Functional Certification Program Policy€¦ · The FIDO Certification program upholds the latest standards developed by the FIDO Alliance. When a new FIDO Specification version is

FIDO Alliance Membership Agreement 7 8 9...24 This Fast Identity Online (“FIDO”) Alliance Membership Agreement (“Agreement”) is entered 25 by Signatory, and provides rights

FIDO Alliance Membership Agreement 7 8 9...24 This Fast Identity Online (“FIDO”) Alliance Membership Agreement (“Agreement”) is entered 25 by Signatory, and provides rights

FIDO Alliance: Standards-based Solutions for Simpler, Strong … · 2019-01-23 · FIDO Alliance: Standards-based Solutions for Simpler, Strong Authentication ... FIDO Standards FIDO

FIDO Alliance: Standards-based Solutions for Simpler, Strong … · 2019-01-23 · FIDO Alliance: Standards-based Solutions for Simpler, Strong Authentication ... FIDO Standards FIDO

The FIDO Alliance & Security · The FIDO Alliance & Security: A conversation with expert information security firm iSEC Partners, part of NCC Group ... Feb 2013 Dec 2013 Feb 2014

The FIDO Alliance & Security · The FIDO Alliance & Security: A conversation with expert information security firm iSEC Partners, part of NCC Group ... Feb 2013 Dec 2013 Feb 2014

AMD White Paper · AMD White Paper Fast Identity Online: Password-less Authentication Page 3 FIDO Protocols The FIDO Alliance[1] defines three sets of technology agnostic specifications:

AMD White Paper · AMD White Paper Fast Identity Online: Password-less Authentication Page 3 FIDO Protocols The FIDO Alliance[1] defines three sets of technology agnostic specifications:

FIDO & PSD2 - FIDO Alliance - Open Authentication ... · FIDO&PSD2 - Providing for a satisfactory customer journey ©FIDO Alliance 2018 Page 3 3 The different authentication models

FIDO & PSD2 - FIDO Alliance - Open Authentication ... · FIDO&PSD2 - Providing for a satisfactory customer journey ©FIDO Alliance 2018 Page 3 3 The different authentication models

The FIDO Approach to Privacy · 2019-11-16 · Mapping to Regulatory Requirements 17 • FIDO privacy principles guided the work inside the FIDO Alliance on technical specifications.

The FIDO Approach to Privacy · 2019-11-16 · Mapping to Regulatory Requirements 17 • FIDO privacy principles guided the work inside the FIDO Alliance on technical specifications.

IIW 16th Report at #idcon

IIW 16th Report at #idcon

W3C Presentation -FIDO Alliance -Tokyo Seminar -Smith

W3C Presentation -FIDO Alliance -Tokyo Seminar -Smith

April 1, 2015 VAST VIEWSagain throughout the day. Fido this, Fido that, Fido no, Fido sit, Fido here, Fido no no no no, Fido Fido Fido, blah blah blah. Trust me, once Fido has heard

April 1, 2015 VAST VIEWSagain throughout the day. Fido this, Fido that, Fido no, Fido sit, Fido here, Fido no no no no, Fido Fido Fido, blah blah blah. Trust me, once Fido has heard

FIDO, Federation & Facebook Social login · 22 All Rights Reserved | FIDO Alliance | Copyright 2017 User verification Authenticator FIDO Authentication. Author: Andrea Madore Created

FIDO, Federation & Facebook Social login · 22 All Rights Reserved | FIDO Alliance | Copyright 2017 User verification Authenticator FIDO Authentication. Author: Andrea Madore Created

FIDO U2F Certified Security Key For Mobile Flyer... · For Mobile ePass FIDO®-NFC. FEITIAN ePass FIDO®-NFC is a FIDO Alliance certified U2F authenticator. It provides a secure,

FIDO U2F Certified Security Key For Mobile Flyer... · For Mobile ePass FIDO®-NFC. FEITIAN ePass FIDO®-NFC is a FIDO Alliance certified U2F authenticator. It provides a secure,

Introduction to the FIDO Alliance: Vision and Status

Introduction to the FIDO Alliance: Vision and Status

FIDO Alliance – Security and Identity

FIDO Alliance – Security and Identity

Mobile Connections – FIDO Alliance and GSMA Presentation

Mobile Connections – FIDO Alliance and GSMA Presentation

Why FIDO Matters - FIDO Alliance · 2019-11-16 · Adoption Next Steps Federation SSO Policy FIPS 140-2 CSP Adoption Browser Identity Us Together FIDO Community Special Pubs

Why FIDO Matters - FIDO Alliance · 2019-11-16 · Adoption Next Steps Federation SSO Policy FIPS 140-2 CSP Adoption Browser Identity Us Together FIDO Community Special Pubs