FIDO alliance #idcon vol.18
-
Upload
nov-matake -
Category
Technology
-
view
1.139 -
download
0
description
Transcript of FIDO alliance #idcon vol.18
@nov
FIDO : Fast IDentity Online
@nov
Samsung And PayPal Move Against Apple With Galaxy S5 Finger Swipe Payments - Forbs
FIDO Alliance Board
http://fidoalliance.org/membership/members
Overview
FIDO Authenticator
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
http://fidoalliance.org/specifications
UAF Specs (Password-less)
FIDO UAF Architectural Overview
FIDO UAF Protocol Specification
FIDO UAF Application API and Transport Binding Specification
FIDO UAF Authenticator-specific Module API
FIDO UAF Authenticator Commands
FIDO UAF Authenticator Metadata
FIDO UAF Registry of Predefined Values
FIDO Security Reference
FIDO Technical GlossaryUAF : Universal Authentication Framework
U2F Specs (2-factor)
FIDO U2F Architectural Overview
FIDO U2F Javascript API
FIDO U2F Raw Message Formats
FIDO U2F USB Framing of APDUs
FIDO U2F Implementation Considerations
FIDO U2F Application Isolation through Facet Identification
FIDO Security Reference
FIDO Technical Glossary
UAF : Universal 2nd Factor
U2F Specs (2-factor)
FIDO U2F Architectural Overview
FIDO U2F Javascript API
FIDO U2F Raw Message Formats
FIDO U2F USB Framing of APDUs
FIDO U2F Implementation Considerations
FIDO U2F Application Isolation through Facet Identification
FIDO Security Reference
FIDO Technical Glossary
UAF : Universal 2nd Factor
(´・_・`)ツラタン
UAF Protocol Phases
Discovery
FIDO enabled or not
Available Authenticators
Registration
Authentication
Transaction Confirmation
Authentication + “Secure Display” (?)
Deregistration
Registration
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
Registration
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
Init
Reg. Request
Registration
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
init
Register Request
Registration
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
init
Reg. Request
Select Authenticator & Authenticate
Registration
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
init
Reg. Request
Select Authenticator & Authenticate
Key Generation
Registration
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
init
Reg. Request
AssertionAuth
Key Generation
Registration
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
init
Reg. Request
Reg. Response
AssertionAuth
Key Generation
Registration
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
init
Reg. Request
Select Authenticator & Authenticate
Reg. Response
Registration
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
init
Reg. Request
Reg. Response
Verify Authenticator
Key Generation
AssertionAuth
Authentication
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
Authentication
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
Init
Auth Request
Authentication
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
Init
Auth Request
Authentication
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
Init
Auth Request
AssertionAuth
Fetch Key
Authentication
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO Server
Auth Response
Init
Auth Request
AssertionAuth
Authentication
User Agent
End-User Device
FIDO Authenticator
FIDO Client
Relying Party
Web Apps
FIDO Authenticator Metadata
FIDO ServerAuthenticate
Auth Response
Init
Auth Request
FIDO Ready™ http://fidoalliance.org/adoption/fido-ready
FIDO Alliance Does..
Define FIDO Specifications
Trust “Attestation Root Certificate(s)”
Issue “Authenticator Vendor Code”
Vendors MUST join
“FIDO Ready™” Program