The document discusses the potential to enhance hardware multi-factor authentication (MFA) from ineffective to highly effective solutions. It highlights advancements in technology, including driverless authenticators and the concept of user-owned identities. Key components include U2F login processes and a comparison of traditional PKI systems versus emerging identity ecosystems.

1. 1
CAN HARDWARE MFA
MOVE FROM MEH TO AHA?
Stina Ehrensvard
CEO & Founder, Yubico

2. 2
StatsProtecting identities

3. 3
History
PKI OTP

4. 4
Phone authenticator

5. 5
Driverless authenticator

6. 6
PKI without the “I”
- No drivers, no client
- No limits on number of supported services
- No shared secrets
- No heavyweight CA

7. 7
U2F sample login
1. Enter password 2. Insert U2F Key 3. Touch device

8. 8
Sample authenticators

9. 9
Identity ecosystem
RP
RP
IDP
RP
RP

10. 10
AUser owned identities