It has become evident the reliance on usernames and passwords is susceptible to a wide range of attacks and they need for simpler and stronger authentication is urgent.
A new Smart Card Alliance white paper, “Smart Card Technology and the FIDO Protocols,” says organizations implementing FIDO authentication standards should consider using smart card technology to enhance their implementations.
To describe the role of smart card technology in enhancing the security of FIDO implementations, the white paper includes:
▪ An overview of the FIDO principles and protocols, including the Universal Second Factor (FIDO U2F) and the Universal Authentication Framework (FIDO UAF)
▪ A description of the security benefits of using smart card technology in FIDO protocol implementations
▪ Examples of use cases currently implementing the FIDO protocols with smart card technology, including Gemalto, Google, Infineon Technologies, Morpho (Safran), NXP Semiconductors, Oberthur Technologies and Yubico implementations.
The white paper says broad implementation and use of the FIDO protocol have the potential to solve one of today’s most troubling problems – authenticating users to online services using a cryptographically sound protocol. It also has the potential to drive increased adoption of smart card technology for authentication, providing an easy-to-use, browser-friendly implementation that leverages the security of smart card technology built into the end user’s device.
Multiple vendors are now offering FIDO-compliant devices that use smart card technology, enabling relying parties to have a high degree of trust in the FIDO token.
The combination of smart card technology and FIDO protocol implementation is a critical piece of the puzzle to make the online world more trusted. The Smart Card Alliance is a strong supporter of the FIDO effort. Many members are active in both the FIDO Alliance and the Smart Card Alliance and increasingly support many of the same users.
For a complete archive of more than 60,000 articles published since 1995 search the CardFlash.com library.