FIDO alliance #idcon vol.18

3,077 views
2,523 views

Published on

Published in: Technology
1 Comment
10 Likes
Statistics
Notes
  • how is the protocol phases by u2f? the same JSON-file?
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here
No Downloads
Views
Total views
3,077
On SlideShare
0
From Embeds
0
Number of Embeds
128
Actions
Shares
0
Downloads
91
Comments
1
Likes
10
Embeds 0
No embeds

No notes for slide

FIDO alliance #idcon vol.18

  1. 1. @nov
  2. 2. FIDO : Fast IDentity Online @nov
  3. 3. Samsung And PayPal Move Against Apple With Galaxy S5 Finger Swipe Payments - Forbs
  4. 4. FIDO Alliance Board http://fidoalliance.org/membership/members
  5. 5. Overview FIDO Authenticator User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server
  6. 6. http://fidoalliance.org/specifications
  7. 7. UAF Specs (Password-less) FIDO UAF Architectural Overview FIDO UAF Protocol Specification FIDO UAF Application API and Transport Binding Specification FIDO UAF Authenticator-specific Module API FIDO UAF Authenticator Commands FIDO UAF Authenticator Metadata FIDO UAF Registry of Predefined Values FIDO Security Reference FIDO Technical Glossary UAF : Universal Authentication Framework
  8. 8. U2F Specs (2-factor) FIDO U2F Architectural Overview FIDO U2F Javascript API FIDO U2F Raw Message Formats FIDO U2F USB Framing of APDUs FIDO U2F Implementation Considerations FIDO U2F Application Isolation through Facet Identification FIDO Security Reference FIDO Technical Glossary UAF : Universal 2nd Factor
  9. 9. U2F Specs (2-factor) FIDO U2F Architectural Overview FIDO U2F Javascript API FIDO U2F Raw Message Formats FIDO U2F USB Framing of APDUs FIDO U2F Implementation Considerations FIDO U2F Application Isolation through Facet Identification FIDO Security Reference FIDO Technical Glossary UAF : Universal 2nd Factor (´・_・`)ツラタン
  10. 10. UAF Protocol Phases Discovery FIDO enabled or not Available Authenticators Registration Authentication Transaction Confirmation Authentication + “Secure Display” (?) Deregistration
  11. 11. Registration User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server
  12. 12. Registration User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server Init Reg. Request
  13. 13. Registration User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server init Register Request
  14. 14. Registration User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server init Reg. Request Select Authenticator & Authenticate
  15. 15. Registration User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server init Reg. Request Select Authenticator & Authenticate Key Generation
  16. 16. Registration User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server init Reg. Request AssertionAuth Key Generation
  17. 17. Registration User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server init Reg. Request Reg. Response AssertionAuth Key Generation
  18. 18. Registration User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server init Reg. Request Select Authenticator & Authenticate Reg. Response
  19. 19. Registration User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server init Reg. Request Reg. Response Verify Authenticator Key Generation AssertionAuth
  20. 20. Authentication User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server
  21. 21. Authentication User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server Init Auth Request
  22. 22. Authentication User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server Init Auth Request
  23. 23. Authentication User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server Init Auth Request AssertionAuth Fetch Key
  24. 24. Authentication User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server Auth Response Init Auth Request AssertionAuth
  25. 25. Authentication User Agent End-User Device FIDO Authenticator FIDO Client Relying Party Web Apps FIDO Authenticator Metadata FIDO Server Authenticate Auth Response Init Auth Request
  26. 26. FIDO Ready™ http://fidoalliance.org/adoption/fido-ready
  27. 27. FIDO Alliance Does.. Define FIDO Specifications Trust “Attestation Root Certificate(s)” Issue “Authenticator Vendor Code” Vendors MUST join “FIDO Ready™” Program

×