Menu
Security group plans for a future without passwords

Security group plans for a future without passwords

The FIDO Alliance encourages stronger use of biometrics and hardware tokens instead of passwords to identify users

Having to remember multiple passwords may soon be a thing of the past.

Setting the stage for a password-free future, an industry consortium has issued a set of instructions that specify a number of alternate ways that computers and devices can confirm a user's identity. The FIDO (Fast IDentity Online) Alliance, which issued the specifications on Tuesday, is backed by a number of large companies in the IT and banking industries, including Microsoft, Google, PayPal, Bank of America, and MasterCard.

After two years of work, FIDO has issued the first fully completed drafts of two specifications - the Universal Authentication Framework (UAF) and Universal 2nd Factor (U2F). If widely deployed, these specifications could form the basis for securing online communications without using passwords, which are cumbersome and can pose security threats.

The two specifications describe procedures that systems can use to verify a person's identity. For instance, biometric sensors such as fingerprint readers could identify a user's identity. A portable hardware token, which can be carried about, could also be used to authenticate individuals.

Today, most users log on to secured online services using passwords, yet this approach remains problematic. More than 76 percent of online breaches exploit weak or stolen log-in credentials, according to a survey from Verizon. While other forms of authentication such as biometrics have long been available, there has been little industry consensus on how these security mechanisms should be implemented, leading to a fragmented and complex environment for online authentication management.

Members of the FIDO Alliance are now able to use these specifications to build security systems. Companies such as Google, PayPal, Samsung and Alibaba have already incorporated early drafts of the specifications into their products and services.

Now that it has finished the core specifications, the FIDO Alliance is working on a set of extensions that will incorporate additional forms of access security, such as establishing identities using Near Field Communications and Bluetooth wireless communications.

Joab Jackson covers enterprise software and general technology breaking news for The IDG News Service. Follow Joab on Twitter at @Joab_Jackson. Joab's e-mail address is Joab_Jackson@idg.com


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags BlackberryGooglebiometricsIdentity fraud / theft

Featured

Slideshows

The making of an MSSP: a blueprint for growth in NZ

The making of an MSSP: a blueprint for growth in NZ

Partners are actively building out security practices and services to match, yet remain challenged by a lack of guidance in the market. This exclusive Reseller News Roundtable - in association with Sophos - assessed the making of an MSSP, outlining the blueprint for growth and how partners can differentiate in New Zealand.

The making of an MSSP: a blueprint for growth in NZ
Reseller News Platinum Club celebrates leading partners in 2018

Reseller News Platinum Club celebrates leading partners in 2018

The leading players of the New Zealand channel came together to celebrate a year of achievement at the inaugural Reseller News Platinum Club lunch in Auckland. Following the Reseller News Innovation Awards, Platinum Club provides a platform to showcase the top performing partners and start-ups of the past 12 months, with more than ​​50 organisations in the spotlight.​​​

Reseller News Platinum Club celebrates leading partners in 2018
Meet the top performing HP partners in NZ

Meet the top performing HP partners in NZ

HP has honoured its leading partners in New Zealand during 2018, following 12 months of growth through the local channel. Unveiled during the fourth running of the ceremony in Auckland, the awards recognise and celebrate excellence, growth, consistency and engagement of standout Kiwi partners.

Meet the top performing HP partners in NZ
Show Comments