Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

FIDO Alliance pushing 'fast-identity' strong authentication protocol

Lenovo, PayPal and Infineon among intial sponsors

Article comments

A new industry group called the Fast Identity Online Alliance, or FIDO Alliance for short, has been launched to promote adoption in e-commerce and websites an innovative authentication protocol that's intended to bring a higher level of security for online users.

The Online Security Transaction Protocol (OSTP), and its client/server components, work by gleaning information gained about the user's device, such as whether it has the Trusted Platform Module chip, or a webcam, or a fingerprint device or other biometrics, or two-factor authentication, and combine that though a cryptographic process to create a shared secret between the back-end server and the device. This OSTP-based type of multi-factor authentication process would be selectively invoked voluntarily by the user for security purposes in transactions, for instance, to assure the identity of the user, beyond simple login and password, to prevent fraud.

One of the driving forces behind the FIDO Alliance is PayPal's chief information security officer, Michael Barrett, and that raises the question of whether PayPal plans to adopt the fast-identity authentication system.

Though Barrett didn't respond to this directly, another of the group's founders, Ramesh Kesanupalli, FIDO Alliance vice president, says "We expect that." Barrett is president of the FIDO Alliance.

However, the alliance doesn't expect to be able to publish its specification until the second half of the year. And the group's aspirations are certain to face some skeptics who will question whether it can succeed in getting the necessary client software both onto the user's computer or mobile device and get the server-side support in place across the Web for widespread use of OSTP. The type of flexible mass-market multi-factor authentication envisioned using multi-factor OSTP for sensitive transactions has never been done before, and any success it has would be ground-breaking.

Kesanupalli is also chief alliance officer at the startup newly launched Nok Nok Labs, which aims to implement OSTP in software. Palo Alto, Calif.-based Nok Nok Labs, backed by a $15 million investment, will have software available later this year that's expected to be the first implementation of the protocol. Barrett is also a founder of Nok Nok Labs.

Besides PayPal and Nok Nok Labs, the four other founding members of FIDO Alliance are Lenovo, Validity Sensors, Agnitio and Infineon. Clain Anderson, director of software at Lenovo, says the hope is that the FIDO protocol could eventually be added as an inexpensive piece of code to all manner of computers and smartphones. "We need something that can work across everything," he says.

The FIDO Alliance indicated that to influence the OSTP protocol, a company has to join the organisation. But the group, set up as a 501(c) nonprofit organisation, intends to make the specification it completes public in the future.



Share:

More from Techworld

More relevant IT news

Comments



Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *