Jun 10, 2020
Andrew Shikiar, executive director and CMO of the (Fast IDentity Online) FIDO Alliance.
What is FIDO?
“ open industry association launched in February 2013 whose mission is to develop and promote authentication standards that help reduce the world’s over-reliance on passwords. FIDO addresses the lack of interoperability among strong authentication devices and reduces the problems users face creating and remembering multiple usernames and passwords.”
Did any one event precipitate creation of the FIDO alliance?
U2F = https://en.wikipedia.org/wiki/Universal_2nd_Factor (yubikeys, tokens)
FIDO certified software and companies: https://fidoalliance.org/fido-certified-showcase/
Digital Identity Guidelines: Authentication and Lifecycle Management - digital ID framework
NIST guidelines that FIDO meets: https://pages.nist.gov/800-63-3/sp800-63b.html#sec5
From a threat modeling perspective, how does ‘2fa’ occur when the authenticating method and the browser are on the same device?
Consumer education initiative https://loginwithfido.com/
IoT Devices- https://fidoalliance.org/internet-of-things/
https://fidoalliance.org/events/ - upcoming webinars for FIDO related topics