"FIDO Alliance: The next generation of easy-to-use strong 2 factor web authentication" by Ijlal Loutfi

Ijlal Loutfi is a new PhD student in the ConSeRNS group.

Her talk will be about identity management on the Internet and the FIDO Alliance which is trying to achieve a good solution for this. (See Abstrat in the long description.)


Authentication by consumers to websites happens primarily with passwords. Account hijacking by compromising passwords happens is a major problem across the web - Google alone has thousands of accounts a day hijacked.

As an answer to the authentication problem, The FIDO (Fast IDentity Online) Alliance is a 501(c)6 non-profit organization nominally formed in July 2012 to address the lack of interoperability among strong authentication devices as well as the problems users face with creating and remembering multiple usernames and passwords. The FIDO Alliance plans to change the nature of authentication by developing specifications that define an open, scalable, interoperable set of mechanisms that supplant reliance on passwords to securely authenticate users of online services. This new standard for security devices and browser plugins will allow any website or cloud application to interface with a broad variety of existing and future FIDO-enabled devices that the user has for online security.

The Mission of the FIDO Alliance is to change the nature of online authentication by:

- Developing technical specifications that define an open, scalable,
interoperable set of mechanisms that reduce the reliance on passwords
to authenticate users.

- Operating industry programs to help ensure successful worldwide
adoption of the Specifications.

- Submitting mature technical Specification(s) to recognized standards
development organization(s) for formal standardization.


Tags: authentication, passwords federation, identity management, FIDO
Published Nov. 12, 2014 3:56 PM - Last modified Nov. 12, 2014 3:56 PM