FIDO Alliance, profile picture
Uploaded byFIDO Alliance
PDF, PPTX658 views

FIDO and Adaptive Authentication

The document discusses the role of mobile devices in multi-factor authentication (MFA) and highlights various authentication methods like FIDO and adaptive authentication. It outlines the importance of factors such as geo-location, user history, and device health in assessing authentication risks. Additionally, it lists vendors recognized in the leadership compass for adaptive authentication solutions and evaluates their market positions and innovations.

Embed presentation

Download as PDF, PPTX
FIDO and Adaptive Authentication John Tolbert Lead Analyst KuppingerCole, Inc www.kuppingercole.com
Mobile Social Risk Adaptive Continuous Stronger Authentication Trends 10/5/2018© KuppingerCole 2
• SMS OTP (deprecated) • Mobile push notifications • Mobile apps • Global Platform TEE / SE • Secure Enclave for iOS • Mobile biometrics • Device native, such as TouchID, FaceID, Samsung Fingerprint • 3rd party, such as NokNok Labs, Daon, etc. • FIDO UAF and 2.0 Mobile Authentication 10/5/2018© KuppingerCole 3
Why mobile devices are important for MFA 4 FIDO
• Facebook, Google, Microsoft, LinkedIn, Twitter, et al • Based on open standards OpenID and OIDC • Can also be used for registration • Famed for Ease-of-use • Incorporates elements of risk adaptive and continuous authentication Social Logins 10/5/2018© KuppingerCole 5
Geo-location User attributes Geo-velocity User history Geo-fencing: IP addresses / ranges User on new device check Time of day / week Jailbreak or root check Device ID / fingerprint Known compromised credential check Device health assessment Fraud indicator check Known bad IP / network checks Factors that can be evaluated by risk adaptive authentication 10/5/2018© KuppingerCole 6
Risk adaptive authentication & FIDO 10/5/2018© KuppingerCole 7 FIDO
Risk Score 0 50 100 T1 T2 T3 T4 T5 T6 Risk variance across time Risk Score Continuous Authentication 10/5/2018© KuppingerCole 8 T1: Initial AuthN T2: No major environmental changes T3: Change of WiFI SSID T4: Location change T5: Normal behavior T6: Return to baseline
Identify criteria for evaluation and vendors to survey Invite vendors to participate Evaluate vendor responses Interview active customers Objective ratings Prepare report Leadership Compass Methodology 10/5/2018© KuppingerCole 9
Security Function- ality Usability Integration Interop Leadership Compass Components 10/5/2018© KuppingerCole 10
Innovation Market Position Financial Ecosystem Leadership Compass Components -- additional 10/5/2018© KuppingerCole 11
Product Leadership – functionality and completeness of vision Market Leadership – number and geographic distribution of customers, partners, and support ecosystem Innovation Leadership – delivering new and useful features at customer request Overall Leadership The Different Categories of Leadership 10/5/2018© KuppingerCole 12
• HID Global • IBM • OneSpan • RSA • SecureAuth + Core Security © KuppingerCole 13 • AdNovum • CA Technologies • Entrust Datacard • Ergon Informatik • Evidian • ForgeRock 10/5/2018 Vendors in Leadership Compass Adaptive AuthN (on-prem)
• Microsoft • Okta • One Identity • OneSpan • Ping Identity • Symantec • ThreatMetrix © KuppingerCole 14 • Centrify • Entrust Datacard • Gemalto • HID Global • ID Data Web • Iovation 10/5/2018 Vendors in Leadership Compass Cloud MFA
LC Adaptive Authentication Overall Leadership 10/5/2018© KuppingerCole 15
KuppingerCole Analysts AG Headquarters Wilhelmstraße 20-22 65185 Wiesbaden | Germany Tel +49 (211) 23 70 77 – 0 Fax +49 (211) 23 70 77 – 11 www.kuppingercole.com The Future of Information Security and Privacy – Today. sales@kuppingercole.com 10/5/2018© KuppingerCole

More Related Content

PPTX
FIDO Masterclass
byFIDO Alliance
 
PDF
FIDO2 & Microsoft
byFIDO Alliance
 
PDF
Deploying FIDO Authentication - Business Considerations
byFIDO Alliance
 
PDF
FIDO Authentication in a Mobile Network
byFIDO Alliance
 
PDF
Consumer Authentication Trends in APAC
byFIDO Alliance
 
PDF
Beyond Passwords: FIDO & the Future of Consumer Authentication
byFIDO Alliance
 
PPTX
Webinar: Catch Up with FIDO Plus AMA Session
byFIDO Alliance
 
PDF
2018 12-07 tokyo-seminar Brett McDowell
byFIDO Alliance
 
FIDO Masterclass
byFIDO Alliance
 
FIDO2 & Microsoft
byFIDO Alliance
 
Deploying FIDO Authentication - Business Considerations
byFIDO Alliance
 
FIDO Authentication in a Mobile Network
byFIDO Alliance
 
Consumer Authentication Trends in APAC
byFIDO Alliance
 
Beyond Passwords: FIDO & the Future of Consumer Authentication
byFIDO Alliance
 
Webinar: Catch Up with FIDO Plus AMA Session
byFIDO Alliance
 
2018 12-07 tokyo-seminar Brett McDowell
byFIDO Alliance
 

What's hot

PDF
FIDO & PSD2 – Achieving Strong Customer Authentication Compliance
byFIDO Alliance
 
PDF
Introduction to FIDO Biometric Authentication
byFIDO Alliance
 
PPTX
Introducing FIDO Device Onboard (FDO)
byFIDO Alliance
 
PDF
Deployment Case Study: Login.gov & FIDO2
byFIDO Alliance
 
PDF
Javelin Research's State of Strong Authentication 2019 Report Webinar
byFIDO Alliance
 
PDF
FIDO UAF Adoption in Hong Kong
byFIDO Alliance
 
PDF
FIDO Authentication Technical Overview
byFIDO Alliance
 
PDF
FIDO and the Future of User Authentication
byFIDO Alliance
 
PDF
FIDO Alliance Vision and Status
byFIDO Alliance
 
PPTX
FIDO Alliance Webinar: Catch Up WIth FIDO
byFIDO Alliance
 
PDF
FIDO Certified Program: The Value of Certification
byFIDO Alliance
 
PDF
Using FIDO Authenticator for IoT Devices
byFIDO Alliance
 
PPTX
Introduction to FIDO's Identity Verification & Binding Initiative
byFIDO Alliance
 
PPTX
A First Step to a World without Passwords
byFIDO Alliance
 
PDF
FIDO's Role in the Global Regulatory Landscape for Strong Authentication
byFIDO Alliance
 
PDF
FIDO as Regtech - Addressing Government Requirements
byFIDO Alliance
 
PPTX
Authenticate 2021: Welcome Address
byFIDO Alliance
 
PDF
Deployment Snapshot from Japan: NTT DOCOMO, Yahoo! Japan
byFIDO Alliance
 
PPTX
Webinar: Considerations for Deploying FIDO in the Enterprise
byFIDO Alliance
 
PDF
FIDO Authentication for Gaming Webinar
byFIDO Alliance
 
FIDO & PSD2 – Achieving Strong Customer Authentication Compliance
byFIDO Alliance
 
Introduction to FIDO Biometric Authentication
byFIDO Alliance
 
Introducing FIDO Device Onboard (FDO)
byFIDO Alliance
 
Deployment Case Study: Login.gov & FIDO2
byFIDO Alliance
 
Javelin Research's State of Strong Authentication 2019 Report Webinar
byFIDO Alliance
 
FIDO UAF Adoption in Hong Kong
byFIDO Alliance
 
FIDO Authentication Technical Overview
byFIDO Alliance
 
FIDO and the Future of User Authentication
byFIDO Alliance
 
FIDO Alliance Vision and Status
byFIDO Alliance
 
FIDO Alliance Webinar: Catch Up WIth FIDO
byFIDO Alliance
 
FIDO Certified Program: The Value of Certification
byFIDO Alliance
 
Using FIDO Authenticator for IoT Devices
byFIDO Alliance
 
Introduction to FIDO's Identity Verification & Binding Initiative
byFIDO Alliance
 
A First Step to a World without Passwords
byFIDO Alliance
 
FIDO's Role in the Global Regulatory Landscape for Strong Authentication
byFIDO Alliance
 
FIDO as Regtech - Addressing Government Requirements
byFIDO Alliance
 
Authenticate 2021: Welcome Address
byFIDO Alliance
 
Deployment Snapshot from Japan: NTT DOCOMO, Yahoo! Japan
byFIDO Alliance
 
Webinar: Considerations for Deploying FIDO in the Enterprise
byFIDO Alliance
 
FIDO Authentication for Gaming Webinar
byFIDO Alliance
 

Similar to FIDO and Adaptive Authentication

PDF
The State of FIDO
byFIDO Alliance
 
PPTX
2019 FIDO Seoul Seminar - Moving Beyond Passwords
byFIDO Alliance
 
PPTX
Introduction to FIDO Alliance
byFIDO Alliance
 
PPTX
FIDO Alliance: Welcome and FIDO Update.pptx
byFIDO Alliance
 
PDF
Fido Overview: Status and Future
byFIDO Alliance
 
PPTX
The State of Passkeys with FIDO Alliance.pptx
byLoriGlavin3
 
PDF
Introduction to the FIDO Alliance
byFIDO Alliance
 
PPTX
Welcome and FIDO Update.pptx
byFIDO Alliance
 
PDF
Introduction to the FIDO Alliance
byFIDO Alliance
 
PDF
FIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok Labs
byNok Nok Labs, Inc
 
PPTX
Global Regulatory Landscape for Strong Authentication
byFIDO Alliance
 
PDF
FIDO And the Future of User Authentication
byFIDO Alliance
 
PDF
FIDO Workshop at the Cloud Identity Summit: FIDO Alliance Overview
byFIDO Alliance
 
PPTX
Strong Authentication Trends in Government
byFIDO Alliance
 
PPTX
FIDO Alliance Vision and Updates
byFIDO Alliance
 
PPTX
Webinar: Beyond Two-Factor: Secure Access Control for Office 365
bySecureAuth
 
PDF
Modern Authentication – Turn a Losing Battle into a Winning Strategy, Robert ...
byCore Security
 
PPTX
Introduction to FIDO Alliance: Vision and Status -Tokyo Seminar -Brett McDowell
byFIDO Alliance
 
PDF
'A Question of Scale: Mapping Authentication to the Modern Computing Ecosystem'
byNok Nok Labs, Inc
 
PDF
FIDO Alliance Today: Status and News
byFIDO Alliance
 
The State of FIDO
byFIDO Alliance
 
2019 FIDO Seoul Seminar - Moving Beyond Passwords
byFIDO Alliance
 
Introduction to FIDO Alliance
byFIDO Alliance
 
FIDO Alliance: Welcome and FIDO Update.pptx
byFIDO Alliance
 
Fido Overview: Status and Future
byFIDO Alliance
 
The State of Passkeys with FIDO Alliance.pptx
byLoriGlavin3
 
Introduction to the FIDO Alliance
byFIDO Alliance
 
Welcome and FIDO Update.pptx
byFIDO Alliance
 
Introduction to the FIDO Alliance
byFIDO Alliance
 
FIDO & The Mobile Network Operator - Goode Intelligence & Nok Nok Labs
byNok Nok Labs, Inc
 
Global Regulatory Landscape for Strong Authentication
byFIDO Alliance
 
FIDO And the Future of User Authentication
byFIDO Alliance
 
FIDO Workshop at the Cloud Identity Summit: FIDO Alliance Overview
byFIDO Alliance
 
Strong Authentication Trends in Government
byFIDO Alliance
 
FIDO Alliance Vision and Updates
byFIDO Alliance
 
Webinar: Beyond Two-Factor: Secure Access Control for Office 365
bySecureAuth
 
Modern Authentication – Turn a Losing Battle into a Winning Strategy, Robert ...
byCore Security
 
Introduction to FIDO Alliance: Vision and Status -Tokyo Seminar -Brett McDowell
byFIDO Alliance
 
'A Question of Scale: Mapping Authentication to the Modern Computing Ecosystem'
byNok Nok Labs, Inc
 
FIDO Alliance Today: Status and News
byFIDO Alliance
 

More from FIDO Alliance

PPTX
FIDO Munich Seminar Introduction to FIDO.pptx
byFIDO Alliance
 
PPTX
UX Webinar Series: Essentials for Adopting Passkeys as the Foundation of your...
byFIDO Alliance
 
PPTX
FIDO Munich Seminar FIDO Automotive Apps.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar: FIDO Tech Principles.pptx
byFIDO Alliance
 
PPTX
UX Webinar Series: Drive Revenue and Decrease Costs with Passkeys for Consume...
byFIDO Alliance
 
PPTX
FIDO Seminar: Authentication for a Billion Consumers - Amazon.pptx
byFIDO Alliance
 
PPTX
FIDO Alliance Seminar State of Passkeys.pptx
byFIDO Alliance
 
PPTX
FIDO Seminar: Evolving Landscape of Post-Quantum Cryptography.pptx
byFIDO Alliance
 
PPTX
Securing Account Lifecycles in the Age of Deepfakes.pptx
byFIDO Alliance
 
PDF
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
byFIDO Alliance
 
PPTX
FIDO Seminar: Targeting Trust: The Future of Identity in the Workforce.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar: Securing Smart Car.pptx
byFIDO Alliance
 
PPTX
FIDO Seminar: New Data: Passkey Adoption in the Workforce.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar: Biometrics and Passkeys for In-Vehicle Apps.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar: Strong Workforce Authn Push & Pull Factors.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
byFIDO Alliance
 
PPTX
FIDO Seminar: Perspectives on Passkeys & Consumer Adoption.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar Workforce Authentication Case Study.pptx
byFIDO Alliance
 
PPTX
UX Webinar Series: Aligning Authentication Experiences with Business Goals
byFIDO Alliance
 
PPTX
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
byFIDO Alliance
 
FIDO Munich Seminar Introduction to FIDO.pptx
byFIDO Alliance
 
UX Webinar Series: Essentials for Adopting Passkeys as the Foundation of your...
byFIDO Alliance
 
FIDO Munich Seminar FIDO Automotive Apps.pptx
byFIDO Alliance
 
FIDO Munich Seminar: FIDO Tech Principles.pptx
byFIDO Alliance
 
UX Webinar Series: Drive Revenue and Decrease Costs with Passkeys for Consume...
byFIDO Alliance
 
FIDO Seminar: Authentication for a Billion Consumers - Amazon.pptx
byFIDO Alliance
 
FIDO Alliance Seminar State of Passkeys.pptx
byFIDO Alliance
 
FIDO Seminar: Evolving Landscape of Post-Quantum Cryptography.pptx
byFIDO Alliance
 
Securing Account Lifecycles in the Age of Deepfakes.pptx
byFIDO Alliance
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
byFIDO Alliance
 
FIDO Seminar: Targeting Trust: The Future of Identity in the Workforce.pptx
byFIDO Alliance
 
FIDO Munich Seminar: Securing Smart Car.pptx
byFIDO Alliance
 
FIDO Seminar: New Data: Passkey Adoption in the Workforce.pptx
byFIDO Alliance
 
FIDO Munich Seminar: Biometrics and Passkeys for In-Vehicle Apps.pptx
byFIDO Alliance
 
FIDO Munich Seminar: Strong Workforce Authn Push & Pull Factors.pptx
byFIDO Alliance
 
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
byFIDO Alliance
 
FIDO Seminar: Perspectives on Passkeys & Consumer Adoption.pptx
byFIDO Alliance
 
FIDO Munich Seminar Workforce Authentication Case Study.pptx
byFIDO Alliance
 
UX Webinar Series: Aligning Authentication Experiences with Business Goals
byFIDO Alliance
 
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
byFIDO Alliance
 

Recently uploaded

PPTX
Design Flaws and Known Attacks in Agentic AI - ITI Business Session
byInformation Technology Institute
 
PDF
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
PDF
Digital Transformation Services The Key to Futureproofing Your Business
byQuadrafort Technolgies
 
PDF
Building Software in the AI Era: Spec-Driven Development with Kiro IDE
byHaim Michael
 
PDF
Requestly or Postman: What’s the Right API Tool for Your Team?
byhenrycavill30521
 
PDF
Chapter 2 Computer Threat .pdf
byGetnet Tigabie Askale -(GM)
 
PDF
The Cost of Missing Critical Connections in Data - Suspicious Behavior Detect...
byEnterprise Knowledge
 
PDF
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
PDF
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
PDF
Generating Structured Outputs from Unstructured Content Using LLMs
byEnterprise Knowledge
 
PPTX
How Blockchain Application Development Enables Trustless Digital Ecosystems.pptx
byLisa ward
 
PPTX
DVCON24-IBM ai/ml driven hardware verification
byArun Joseph
 
PPTX
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
PPTX
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
PPTX
Visual Foxpro-VFP9-Access-Report-Variable-Outside-the-report.pptx
bymanojbkalla
 
PDF
Higgsfield AI: The New Way to Create Cinematic Video
bytechnologyupside
 
PDF
Presentation on Four Stroke Engine of Ic engine
bySonam Sherpa
 
PDF
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
PDF
Early Signs of Constraint Loss in Modern System Design
byReality Drift Archive
 
PPTX
IBM_NEXA_DAC2021 NEXA, a cloud-native platform for collaborative hardware log...
byArun Joseph
 
Design Flaws and Known Attacks in Agentic AI - ITI Business Session
byInformation Technology Institute
 
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
Digital Transformation Services The Key to Futureproofing Your Business
byQuadrafort Technolgies
 
Building Software in the AI Era: Spec-Driven Development with Kiro IDE
byHaim Michael
 
Requestly or Postman: What’s the Right API Tool for Your Team?
byhenrycavill30521
 
Chapter 2 Computer Threat .pdf
byGetnet Tigabie Askale -(GM)
 
The Cost of Missing Critical Connections in Data - Suspicious Behavior Detect...
byEnterprise Knowledge
 
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
Generating Structured Outputs from Unstructured Content Using LLMs
byEnterprise Knowledge
 
How Blockchain Application Development Enables Trustless Digital Ecosystems.pptx
byLisa ward
 
DVCON24-IBM ai/ml driven hardware verification
byArun Joseph
 
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
Visual Foxpro-VFP9-Access-Report-Variable-Outside-the-report.pptx
bymanojbkalla
 
Higgsfield AI: The New Way to Create Cinematic Video
bytechnologyupside
 
Presentation on Four Stroke Engine of Ic engine
bySonam Sherpa
 
Josh Chu Boston - An Innovative Technology Executive
byJosh Chu Boston
 
Early Signs of Constraint Loss in Modern System Design
byReality Drift Archive
 
IBM_NEXA_DAC2021 NEXA, a cloud-native platform for collaborative hardware log...
byArun Joseph
 

FIDO and Adaptive Authentication

  • 1.
    FIDO and AdaptiveAuthentication John Tolbert Lead Analyst KuppingerCole, Inc www.kuppingercole.com
  • 2.
    Mobile Social Risk AdaptiveContinuous Stronger Authentication Trends 10/5/2018© KuppingerCole 2
  • 3.
    • SMS OTP(deprecated) • Mobile push notifications • Mobile apps • Global Platform TEE / SE • Secure Enclave for iOS • Mobile biometrics • Device native, such as TouchID, FaceID, Samsung Fingerprint • 3rd party, such as NokNok Labs, Daon, etc. • FIDO UAF and 2.0 Mobile Authentication 10/5/2018© KuppingerCole 3
  • 4.
    Why mobile devicesare important for MFA 4 FIDO
  • 5.
    • Facebook, Google,Microsoft, LinkedIn, Twitter, et al • Based on open standards OpenID and OIDC • Can also be used for registration • Famed for Ease-of-use • Incorporates elements of risk adaptive and continuous authentication Social Logins 10/5/2018© KuppingerCole 5
  • 6.
    Geo-location User attributes Geo-velocityUser history Geo-fencing: IP addresses / ranges User on new device check Time of day / week Jailbreak or root check Device ID / fingerprint Known compromised credential check Device health assessment Fraud indicator check Known bad IP / network checks Factors that can be evaluated by risk adaptive authentication 10/5/2018© KuppingerCole 6
  • 7.
    Risk adaptive authentication& FIDO 10/5/2018© KuppingerCole 7 FIDO
  • 8.
    Risk Score 0 50 100 T1 T2T3 T4 T5 T6 Risk variance across time Risk Score Continuous Authentication 10/5/2018© KuppingerCole 8 T1: Initial AuthN T2: No major environmental changes T3: Change of WiFI SSID T4: Location change T5: Normal behavior T6: Return to baseline
  • 9.
    Identify criteria for evaluation andvendors to survey Invite vendors to participate Evaluate vendor responses Interview active customers Objective ratings Prepare report Leadership Compass Methodology 10/5/2018© KuppingerCole 9
  • 10.
    Security Function- ality Usability Integration Interop LeadershipCompass Components 10/5/2018© KuppingerCole 10
  • 11.
    Innovation Market Position Financial Ecosystem LeadershipCompass Components -- additional 10/5/2018© KuppingerCole 11
  • 12.
    Product Leadership – functionalityand completeness of vision Market Leadership – number and geographic distribution of customers, partners, and support ecosystem Innovation Leadership – delivering new and useful features at customer request Overall Leadership The Different Categories of Leadership 10/5/2018© KuppingerCole 12
  • 13.
    • HID Global •IBM • OneSpan • RSA • SecureAuth + Core Security © KuppingerCole 13 • AdNovum • CA Technologies • Entrust Datacard • Ergon Informatik • Evidian • ForgeRock 10/5/2018 Vendors in Leadership Compass Adaptive AuthN (on-prem)
  • 14.
    • Microsoft • Okta •One Identity • OneSpan • Ping Identity • Symantec • ThreatMetrix © KuppingerCole 14 • Centrify • Entrust Datacard • Gemalto • HID Global • ID Data Web • Iovation 10/5/2018 Vendors in Leadership Compass Cloud MFA
  • 15.
    LC Adaptive AuthenticationOverall Leadership 10/5/2018© KuppingerCole 15
  • 16.
    KuppingerCole Analysts AG Headquarters Wilhelmstraße20-22 65185 Wiesbaden | Germany Tel +49 (211) 23 70 77 – 0 Fax +49 (211) 23 70 77 – 11 www.kuppingercole.com The Future of Information Security and Privacy – Today. sales@kuppingercole.com 10/5/2018© KuppingerCole