The Green Sheet Online Edition
August 08, 2016 • Issue 16:08:01
EMVCo, FIDO seeking stronger authentication
Payments industry leaders are optimistic that a new collaboration between EMVCo and the Fast IDentity Online (FIDO) Alliance, disclosed in July 2016, will help facilitate widespread adoption of biometric authentication schemes. The two global bodies entered into a memorandum of understanding designed to help simplify mobile payments authentication methods to mitigate online fraud without complicating the user experience.
"The payments community wants consumers to benefit from the simplicity of device-based authentication, which could be a fingerprint or facial recognition, for example," said Jonathan Main, EMVCo Board of Managers Chair. Main noted that advanced forms of authentication are not dependent on Internet connectivity; cardholders can verify themselves even when their devices are not connected to a network. "This initiative, therefore, enables us to effectively combine EMVCo's payment industry knowledge with the FIDO Alliance's authentication expertise to deliver cardholder verification that is convenient for the user, sustainable for the marketplace and most important, highly secure, thereby reducing consumer fraud in the mobile payment space," Main said.
Collectively owned by American Express Co., Discover Financial Services, JCB International Credit Card Co. Ltd., Mastercard, China UnionPay and Visa Inc., EMVCo manages EMV (Europay, Mastercard and Visa) specifications, adapting when necessary in response to regional regulations.
EMVCo Associates work closely with the global body's business and technical teams to create flexible and sustainable standards that stand the test of time. Members include payment card issuers, acquirers, networks, merchants, manufacturers, technology providers and testing laboratories from numerous countries. Any payments industry stakeholder may subscribe to receive EMVCo updates, which include advance notifications of new developments and draft documents.
Formed in July 2012, the FIDO Alliance is committed to developing strong, interoperable authentication technologies to eliminate the need for users to create and memorize multiple usernames and passwords. The global body is focused on changing the nature of authentication through standards that simplify and strengthen authentication within an open, scalable, interoperable framework. The many forms of FIDO authentication share common attributes of heightened security, privacy, and simplified user interfaces for authenticating users of online services.
FIDO Alliance members include Aetna Inc., Alibaba Group Holding Ltd., American Express Co., Bank of America Corp., Google Inc., Intel Corp., ING Group, Infineon Technologies AG, Lenovo, Mastercard, Microsoft Corp., Oberthur Technologies, PayPal Inc., QualComm Inc., Samsung Electronics Co. Ltd., Visa Inc., and several other companies.
"This partnership with EMVCo is a prime example of how industry bodies can work with the FIDO Alliance to use simpler, stronger FIDO authentication to fulfill their own requirements," said Brett McDowell, Executive Director of the FIDO Alliance. "With the growing use of EMV mobile payment, there is a real need for cardholder verification that is highly secure but unobtrusive for consumers. FIDO standards address that need, and this joint work with EMVCo has the potential to accelerate the global adoption of mobile authentication standards within the payments community."
One popular form of biometric authentication is the selfie photo, a common feature on numerous smartphones and feature phones. End users can use the method to verify their identities when logging into to websites from mobile devices. EyeVerify Inc., a FIDO Alliance member, has registered millions of users to its mobile app Eyeprint ID. The app is designed to securely open mobile devices, log into websites and apps and protect mobile payments. The company also provides a software development kit to enable developers to integrate biometric authentication with third-party applications.
Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.