The FIDO Alliance is a conglomerate of top technology corporations (Microsoft, Google, Oberthur, NXP, Paypal, etc…) aiming to create standardized enhanced authentication with specific goals of “Passwordless Authentication” (UAF) and “Second Factor Authentication” (U2F). Essentially, they want to be able to framework how companies provide secure access to their web resources as well as how users prove their identity to the companies. Here’s my take on the effort.
As professionals in the authentication space, we stay up to date with technology providers and their solutions. For this post I have invited Abby Porter, Director of Product Management at Delfigo Security to discuss whether it’s time to get rid of passwords all together, and the challenges associated with doing so.
Using certificates is great, but how do you secure your keys? The WWPass PassKey is a cryptographic hardware token that bridges the gap between physical hardware and cloud technologies (Smart Card in the Cloud). Don’t store your private keys on your insecure PC where they can be easily stolen or destroyed, use the PassKey where your keys are cryptographically sealed, even at rest, and have the resiliency of data stored in the cloud.