The future of online authentication
by Phillip Dunkelberger - President & CEO, Nok Nok Labs - Monday, 10 June 2013.
If we look at the different options available for companies today, they share many common factors. Typically they offer proprietary approaches to solving the username/password conundrum. Companies will have to consider their user population as a single, homogenous entity if they want to roll out strong authentication, as they will have to invest in infrastructure, back-end management tools, client distribution and end-user education. This approach stifles innovation, as it makes it too costly for companies to roll out newer technologies to better anticipate customer needs.

What’s missing is not another authentication technology, it’s a common infrastructure to allow backed systems to use different solutions based on business risk. This is the problem that the FIDO Alliance is focused on solving by establishing wide, industry standards that provide a framework for innovation.

This industry alliance was formally announced back in February with six founding members – Lenovo, Infineon, PayPal, Nok Nok Labs, Agnitio and Validity Sensors. Their ambition is to deliver a standardized authentication protocol which supports different authentication technologies including biometric capabilities such as voice, face and fingerprint recognition, as well as USB tokens, Trusted Platform Modules (TPMs) and traditional One Time Passphrase (OTP) tokens.

The fundamental principle is that relying parties, such as banks or e-commerce sites, should be able to leverage the capabilities present on their customers chosen devices that meet the risk associated with a transaction. This ensures that they are not trapped in a specific authentication ‘silo,’ but are able to be flexible to new customer requirements.

Since the launch of the FIDO Alliance, we have seen significant momentum in the marketplace. Google, NXP and CrucialTec have joined as board members, and the overall membership has more than doubled with significant representation from device manufacturers and authentication vendors. This growth is noteworthy as it shows the demand for a standards-based approach to solving modern authentication challenges.

Spotlight

eBook: Cybersecurity for Dummies

Posted on 16 December 2014.  |  APTs have changed the world of enterprise security and how networks and organizations are attacked. These threats, and the cybercriminals behind them, are experts at remaining hidden from traditional security while exhibiting an intelligence, resiliency, and patience that has never been seen before.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Thu, Dec 18th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //