Friday, October 21, 2022
In opening remarks, Andrew Shikiar, executive director at FIDO Alliance, welcomed service providers, enterprises, users, compliance specialists and software developers, all of whom, he noted, are part of FIDO's expanding global ecosystem. The FIDO standard is designed to improve ease of use, privacy, security and standardization by reducing password reliance to provide a trusted customer experience and drive online service consumption, revenue and profit.
Scott Bingham, senior program manager at Microsoft, described authentication as the front door of the customer experience, a process he described as "ask, act, validate," that proves rightful owners are requesting access.
"Hackers don't break in; they log in," he said, noting 99.9 percent of security breaches are password-only attacks, including phishing, smishing, social engineering, voice phishing and fake website redirects.
Alternatively, Bingham noted, multifactor authentication (MFA), combined with biometric gestures and secure cryptography, enhance security and deliver an easy-to-use, interoperable and trustworthy customer experience. These essential elements are repeatable, harmonized, documented methods, designed to help the FIDO standard scale, he added.
Leaders shared key learnings from passwordless journeys and collaborative efforts to evolve the FIDO standard from early hardware-centric models to FIDO2 and passkey, inclusive, omnichannel approaches designed to facilitate seamless authentication across multiple platforms and devices. Presentations examined various FIDO2 perspectives and use cases, including the following:
Additional presentations looked beyond devices and platforms to FIDO members' and stakeholders' focus on diversity and inclusion. Teresa Wu, vice president of innovation and client engagement at IDEMIA, moderated a panel titled "Diversity in Cybersecurity: Why Does it Matter?" Panelists included Rita Mounir, co-founder and COO, Allthenticate; Karen Larson, senior director, strategic alliances, Axiad; and Christina Hulka, executive director and chief operating officer, FIDO Alliance. Panelists noted cybersecurity affects everyone equally.
Christina Hulka agreed that multiple perspectives are vital to cybersecurity and FIDO as an organization. "I chair the Board and have to make sure everyone gets heard, regardless of their language," she said. "This makes our organization that much more valuable to the world."
Shikiar noted that FIDO Alliance provides conformance and interoperability testing, including security evaluation and testing and functional certifications for IoT device authentication. In addition, the FIDO Certified Professional program, launched in May 2022, offers different levels of security assurance in five professional domains: analysis, validation, design, deployment and education, he stated.
Kevin Goldman, chief experience officer at Trusona, and Allyson Wagner, senior user experience designer for IDEMIA, unveiled the FIDO Alliance Design System at the conference, which is described as a flexible and highly configurable framework designed to remove hundreds of hours from FIDO deployments.
The user experience has always been at the center of FIDO design, Goldman and Wagner noted.
"FIDO Authentication enables password-only logins to be replaced with secure and fast login experiences across websites and apps," Shikiar said, summarizing the top conference takeaway as "Deploy FIDO Alliance's free and open standards and begin your passwordless journey today."
The Green Sheet Inc. is now a proud affiliate of Bankcard Life, a premier community that provides industry-leading training and resources for payment professionals. Click here for more information.
Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.