FIDO

FIDO Submits Token Binding Specification to IETF Editor

FIDO Submits Token Binding Specification to IETF Editor

“…token binding is already being adopted by Google and Microsoft in their Chrome and Edge browsers, that is has been included in the OpenID Connect Enhanced Authentication Profile, and that it’s coming to US government authentication standards including NIST SP 800-63-3.” An important security specification developed by the FIDO Alliance is close to becoming finalized. The IETF…

iBeta Quality Assurance is Accredited for FIDO’s Biometrics Certification Program

iBeta Quality Assurance is Accredited for FIDO’s Biometrics Certification Program

“By meeting the rigorous FIDO Alliance training and testing process to become the first accredited biometrics test lab, iBeta has augmented our already mature biometrics testing program to include the FIDO standards certification efforts.” -Gail Audette, Program Manager, iBeta Colorado-based iBeta Quality Assurance has become the first lab accredited for the FIDO Alliance‘s Biometrics Component…

Knomi Biometric Authentication Platform Scores FIDO UAF 1.1 Certification

Knomi Biometric Authentication Platform Scores FIDO UAF 1.1 Certification

“FIDO continues to gain adoption globally in part because of a dynamic marketplace of certified products from a variety of providers, with each having passed through a rigorous certification program that provides assurance that they are functional and interoperable. Aware is pleased to offer some of the first authenticators available to be version 1.1 certified.”…

Yubico Looks to Lightning Port to Bring U2F Security to the iPhone

Yubico Looks to Lightning Port to Bring U2F Security to the iPhone

Yubico has announced a new mobile SDK that enables Lightning support on iOS. It’s a workaround to Apple’s notorious unwillingness to open its NFC technology to third party developers, and the lack of USB ports on mobile devices in general. These factors have thus far prevented Yubico from establishing connectivity between Apple devices and its…

Government Report Urges IRS to Consider FIDO Security for Taxpayers

Government Report Urges IRS to Consider FIDO Security for Taxpayers

“…the GAO’s report highlights authentication solutions based on FIDO standards for their capacity to offer ‘a convenient, added layer of security when used as a second factor for accessing websites or systems that would otherwise rely on a username and password for single-factor authentication.’” The FIDO Alliance has a high-profile new supporter in the government…

FIDO Technical Director Offers Clarity on Attestation

FIDO Technical Director Offers Clarity on Attestation

The FIDO Alliance‘s Technical Director, Adam Powers, is seeking to clarify a confusing matter in a new post on the organization’s website: Attestation. The term is often confused with “assertion,” an operation that occurs during an authentication transaction. “Attestation,” rather, refers to something that happens when a user registers for a digital service. In that…

Timehop Data Breach Yields Valuable Lessons: FIDO

Timehop Data Breach Yields Valuable Lessons: FIDO

Earlier this month, the company behind Timehop, a social media ‘time capsule’ app that shows users their older posts, revealed that it had suffered a data breach affecting 21 million users. And while the attack was not particularly exceptional as far as data breaches go, it nevertheless offers some food for thought, as FIDO Alliance…

Megazone Achieves FIDO UAF Certification for Mine Pass

Megazone Achieves FIDO UAF Certification for Mine Pass

“Utilizing Megazone’s Mine Pass, we will be able to customize development and deployment to meet the needs of enterprise customers in addition to SaaS services in the future, and will provide customers with a market-proven solution that has been officially accredited by FIDO.” – Max Lee, CEO, Megazone Korea-based cloud services provider Megazone has acquired FIDO…

Twitter Suggests FIDO U2F Keys for User Security

Twitter Suggests FIDO U2F Keys for User Security

Twitter has officially endorsed FIDO U2F certified security keys for users, as well as two-factor authentication more broadly. The social media giant’s advocacy came by way of a larger update on how the company is working to fight spam and malicious bots, with Twitter announcing in a blog post that it had “identified and challenged”…

FIDO Ecosystem Approaches 500 Mark with Latest Certifications

FIDO Ecosystem Approaches 500 Mark with Latest Certifications

The FIDO Alliance has announced that nine additional companies have become FIDO certified. The newly certified organizations include Acceptto, AirCUVE, Fishbag Technology, Gemalto, Jazz Networks, and Smart Technology Investment and Development. The certifications demonstrate the continuing momentum of the FIDO Alliance’s standards. This time last year, FIDO announced that the number of devices supporting is…

Sensory Anticipates Mass Adoption ‘Tipping Point’ for TrulySecure

Sensory Anticipates Mass Adoption ‘Tipping Point’ for TrulySecure

“Operating through a standard mobile device, TrulySecure combines facial and voice recognition to identify the end user. It’s now being used in mobile apps from a number of financial services providers including Alior, Banorte, ICICI, Maybank, Mizuho Bank, and Qatar Islamic Bank.” Sensory Inc. is celebrating the growing ubiquity of its TrulySecure platform, announcing that…

PKI Partner to Promote FIDO in India

PKI Partner to Promote FIDO in India

An important new partnership could help to significantly extend the reach of FIDO Alliance authentication standards in India. The cross-industry consortium has announced that it has established “a mutual liaison relationship” with India PKI Forum, a non-profit organization under the auspices of the Indian Ministry of Information Technology’s Controller of Certifying Authorities agency. IPKI offers…

FIDO and EMVCo Expand 3DS Collaboration

FIDO and EMVCo Expand 3DS Collaboration

The FIDO Alliance and EMVCo are deepening their partnership, announcing that they are going to collaborate together on refining standards concerning the transmission of FIDO authentication data through EMV 3-D Secure (or “3DS”) messages. The aim is to make this process “scalable and interoperable across the EMV payments ecosystem,” according to a statement from the…

FIDO Celebrates Growth of EU Working Group

FIDO Celebrates Growth of EU Working Group

In the wake of the EU’s GDPR privacy law, the FIDO Alliance is celebrating the growth of its FIDO Europe Working Group. Launched last November with an initial membership of 12, including major companies like Daon, Gemalto, ING, and Verizon, the Working Group now has 22 member organizations. The growth is perhaps no surprise, however,…

Pages