Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Fido China Working Group (FCWG)
1. FIDO CHINA WORKING GROUP(FCWG)
SYNC
Mike Ling, Vice-Chair, FCWG
Sr. Vice President, Egis Technology
FIDO Alliance | All Rights Reserved | Copyright 2016
#FIDOseminar
3. About FCWG
Confidential
FIDO Alliance | All Rights Reserved | Copyright 2016 3
Major Group Members
FCWG (FIDO China Working
Group), has established in
Jan, 2016.
The first regional working
group.
4. Confidential FIDO Alliance | All Rights Reserved | Copyright 2016 4
1
FCWG Mission
Lead
Collaboration
within and outside
China
2
Collect
Local
Regulatory
Requirements
3
Promote
Deployment of
FIDO Solution
4
Facilitate
the evolution
of FIDO
technology
6. FIDO Promotion
Marketing Events
“Cyberspace Trusted Identity Management Technical
Symposium” was held earlier this year, with Brett’s
presence, featured FIDO in a positive light.
There will be another symposium focusing on mobile
payment standardization in Shenzhen, China, Oct 21.
7. FIDO Promotion (cont’d)
Confidential FIDO Alliance | All Rights Reserved | Copyright 2016 7
Member Recruit
Successfully recruit CESI as a most recent government member.
CESI also intends to become an accredited lab for FIDO Certification in
China.
These companies also joined FIDO with FCWG’s great effort.
10. Localization
Confidential
FIDO Alliance | All Rights Reserved | Copyright 2016 10
Specifications Localization
Joint Certification Center with CTTL/CESI
Both CAICT’s CTTL and CESI are interested in becoming FIDO accredited labs in China.
FIDO and CTTL has reached a agreement, CTTL will not only be the first accredited labs to perform
FIDO certification testing in mainland China, it will also be the first labs accredited by FIDO.
UAF v1.0 translation is done.
Our ultimate goal is to develop a single, common standard that includes China-specific requirements.
11. Government Endorsement
Confidential
FIDO Alliance | All Rights Reserved | Copyright 2016 11
CESI
Related Authority/Research
Institute
Information Security &
Technology
Related Authority
Finance
Related Authority
Telecommunication
Related Authority/
Research Institute
Cryptographic Related
Authority
Research Institute
CAC
TC260
MPS
PBC
WG4
Technology
Dept
MIIT
Technology
Dept.
Telecommun
-ication Dept.
CAICT
CTTL
OSCCA SAC
CAS
Inst. of
Information
Engineering
Inst. of
Automation
CACR
First Research Institute
Third Research Institute
Regulatory Framework of China Authentication Industry
Long-term engagement with these
authorities are ongoing.
12. Main Challenges
Long-term engagement to achieve government
endorsement.
• Together with other industry partners to develop a single,
common standard in such a competitive environment is a
bit challenging.
Confidential
FIDO Alliance | All Rights Reserved | Copyright 2016 12
13. FIDO Alliance | All Rights Reserved | Copyright 2016
THANK YOU
Q & A
13Confidential
Editor's Notes
FIDO China Working Group, also known as FCWG, was established in FIDO San Diego plenary meeting in January, 2016. Among all nine active working group of FIDO, FCWG is proud to be the first regional working group that the alliance has established.
The FIDO China Working Group will facilitate communication and cooperation within the China authentication industry to promote deployment of FIDO solutions, improve FIDO awareness and collect regulatory requirements from the Chinese industry and government, working closely with policy makers.
Given the unique Chinese market situation, the FCWG will work to ensure unique requirements for the Chinese market are provided to the other Work Groups within the Alliance, with a goal of supporting these in its standards (i.e. UAF/U2F/2.0). This is targeted to meet the need of biometric authentication technology development in China’s special environment.
Ultimately, the goal of this activity is to define and develop a single, common standard that includes support China-specific requirements.
To ensure FIDO solutions are able to be certified by Chinese authorities to meet any regulatory or market requirements. The WG will coordinate any activities and communication with these regulatory groups and will provide information, education and guidance to enable these Chinese market certifications can be met with the FIDO solutions as developed and certified by the FIDO Alliance Certification WG process. Where any discrepancies are uncovered, the FCWG will bring this information back to the TWGs and CWG, who will maintain authority over the FIDO Certification testing and trademark programs operated by the FIDO Alliance. It is expected that specific China government agencies will volunteer to be the certification authorities for FIDO conformant solutions in China. If this happens, the FCWG will coordinate activities and documentation between the local China certification authorities and CWG.
Hold seminar/workshop every half a year.
A large-scale, with extensive media exposure event named “Cyberspace Trusted Identity Management Technical Symposium” on April 27th .
Bestpay (翼支付) is a third-party payment service provider of China telecom, also the third largest payment company right after Alipay and WeChat pay in mainland China.
In 2015, Bestpay has integrated FIDO-based fingerprint solution, which is supported by Apple, Huawei, Samsung, Lenovo et al these mainstream OEMs in Android and iOS system.
Bestpay will also launch FIDO-based iris solution in its app very shortly. Therefore, Bestpay app users could authenticate themselves by enrolling their iris, after the recognition, users could make payments via iris scan.
Cyberspace Administration of China (CAC)
National Information Security Standardization Technical Committee (TC260)
Ministry of Public Security (MPS)
The People’s Bank of China (PBC)
Ministry of Information and Industry Technology (MIIT)
China Academy of Information and Communication Technology (CAICT)
China Telecommunication and Technology Labs(CTTL)
China Electronics Standardization Institute (CESI)
Standardization Administration of the P.R.C(SAC)
Chinese Academy of Sciences(CAS)
Institute of Information Engineering, CAS
Institute of Automation, CAS
Chinese Association for Cryptologic Research (CACR)
Office of Security Commercial Code Administration (OSCCA)
Given China’s authentication-related regulatory environment is a bit complicated, there is still a long way to go to keep engaging with those authorities.
Apart from FIDO, some key shareholders in China have also developed their own authentication solutions, the market is competitive. So as one of FCWG’s main goal, to develop a single, common standard is a bit challenging.