FIDO Alliance, profile picture
Uploaded byFIDO Alliance
PPTX, PDF1,944 views

FIDO Seminar: Authentication for a Billion Consumers - Amazon.pptx

FIDO Seminar: Authentication for a Billion Consumers - Amazon

Embed presentation

Downloaded 10 times
© FIDO Alliance 2025 1 1 © FIDO Alliance 2025 Authentication for a Billion Consumers Mike Slaugh Principal Security Engineer
© FIDO Alliance 2025 2 Scaling leads to more … Users 123456 Authenticators Complexity
© FIDO Alliance 2025 3 3 © FIDO Alliance 2025 How do you scale an authentication system to a billion users?
© FIDO Alliance 2025 4 Scaling leads to more … Users 123456 Authenticators Complexity Custom er Experience Sim plify Choice
© FIDO Alliance 2025 5 #1 Customer Experience
© FIDO Alliance 2025 6 Two Roles in Authentication Systems Security Owner Experience Owner
© FIDO Alliance 2025 7 FRESH Security Certified
© FIDO Alliance 2025 8 FRESH Experience Certified
© FIDO Alliance 2025 9
© FIDO Alliance 2025 10 FRESH Security Certified FRESH Experience Certified
© FIDO Alliance 2025 11 Combine Roles? ?
© FIDO Alliance 2025 12 Considerations for Customer Obsession Create a step-by-step experience to guide your customers through the authentication process Authenticate customers at one time. Avoid constantly redirecting the user back for more authentication Simple Create defaults and preferences based on historical usage Predict which authentication methods apply to the customer and have them ready Applicable Eliminate confusing terms and phrases that may only be meaningful only in certain languages or cultures. Accommodating
© FIDO Alliance 2025 13 #2 Simplify
© FIDO Alliance 2025 14 Authentication Taxonomy Verify An establishment of trust in an identity claim that facilitates downstream activities and events. Enroll An agreement between parties of the credentials that will be used going forward. Recover An event when a user no longer has access to the previously agreed upon credentials and needs another way to access their account. Authenticate A ceremony where credentials are presented and validated to quickly and easily reverify the user’s identity
© FIDO Alliance 2025 15 Authenticator of Choice A1 A2 ID + AuthN Know • Password • PIN • Passphrase Have • Security Keys • Smart Card • One Time Codes • Device Recognition • TOTP • Authenticator Apps • Digital Certificate • Device Bound Passkey Are Biometrics • Touch • Face • Voice • User Name • Email Address • Phone Number • Customer Number Allow users to have multiple options and let them choose based on current situation Identifier Authentication • Multifactor Authentication • Single factor Authentication + =
© FIDO Alliance 2025 16 #3 Choice
© FIDO Alliance 2025 17 Which Authenticators should you use? 1 2 3 4 5 6 Trust Thresholds should determine which authenticators the program will support Authenticator High Trust Med Trust Security
© FIDO Alliance 2025 18 Login Please sign in to continue. Email user123@gmail.com Don’t have an account? Sign Up Remember me NEXT Verify Please choose a verification method Password Passkey Send a code to my phone Use an authenticator app More Options? NEXT Password Please enter your password Password LOGIN
© FIDO Alliance 2025 19 Trust Matrix • Choose Authenticators that are high trust • Don’t allow combination of lower trust authenticators A1 A2 High Med High Med Trust Thresholds should determine which authenticators the program will support
© FIDO Alliance 2025 20 In Summary … Build experiences based on customer needs 1 Simplify the complexity of the ecosystem 2 Provide several options to authenticate 3
© FIDO Alliance 2025 21 21 © FIDO Alliance 2025 Thank you

More Related Content

PDF
The Consumerization of Authentication with iovation
byTransUnion
 
PDF
Javelin Research's State of Strong Authentication 2019 Report Webinar
byFIDO Alliance
 
PDF
Beyond Passwords: FIDO & the Future of Consumer Authentication
byFIDO Alliance
 
PDF
FIDO Authentication Technical Overview
byFIDO Alliance
 
PDF
FIDO Authentication Technical Overview
byFIDO Alliance
 
PDF
Introduction to the FIDO Alliance
byFIDO Alliance
 
PDF
Beyond Passwords: FIDO and the Future of User Authentication
byFIDO Alliance
 
PDF
FIDO Technical Specifications Overview
byFIDO Alliance
 
The Consumerization of Authentication with iovation
byTransUnion
 
Javelin Research's State of Strong Authentication 2019 Report Webinar
byFIDO Alliance
 
Beyond Passwords: FIDO & the Future of Consumer Authentication
byFIDO Alliance
 
FIDO Authentication Technical Overview
byFIDO Alliance
 
FIDO Authentication Technical Overview
byFIDO Alliance
 
Introduction to the FIDO Alliance
byFIDO Alliance
 
Beyond Passwords: FIDO and the Future of User Authentication
byFIDO Alliance
 
FIDO Technical Specifications Overview
byFIDO Alliance
 

Similar to FIDO Seminar: Authentication for a Billion Consumers - Amazon.pptx

PDF
FIDO Technical Specifications Overview
byFIDO Alliance
 
PDF
FIDO and the Future of User Authentication
byFIDO Alliance
 
PDF
Beyond Passwords: FIDO and the Future of User Authentication
byFIDO Alliance
 
PDF
FIDO And the Future of User Authentication
byFIDO Alliance
 
PDF
2018 12-07 tokyo-seminar Brett McDowell
byFIDO Alliance
 
PPTX
FIDO Alliance Vision and Updates
byFIDO Alliance
 
PPTX
IdentityVerification IDV + Passkeys.pptx
byLoriGlavin3
 
PPTX
Authenticate 2021: Welcome Address
byFIDO Alliance
 
PDF
2014 IoT Forum_ Fido Alliance
byCOMPUTEX TAIPEI
 
PPTX
Introduction to FIDO Alliance
byFIDO Alliance
 
PPTX
Introduction to FIDO: A New Model for Authentication
byFIDO Alliance
 
PPTX
Introduction to FIDO Alliance: Vision and Status -Tokyo Seminar -Brett McDowell
byFIDO Alliance
 
PPTX
FIDO Alliance: Year in Review Webinar slides from January 20 2016
byFIDO Alliance
 
PDF
Deploying FIDO Authentication - Business Considerations
byFIDO Alliance
 
PPTX
Strong Authentication Trends in Government
byFIDO Alliance
 
PDF
Introduction to FIDO Authentication
byFIDO Alliance
 
PDF
Intelligent Authentication
byCA Technologies
 
PDF
FIDO & PSD2 – Achieving Strong Customer Authentication Compliance
byFIDO Alliance
 
PDF
FIDO Authentication in a Mobile Network
byFIDO Alliance
 
PDF
Fido Overview: Status and Future
byFIDO Alliance
 
FIDO Technical Specifications Overview
byFIDO Alliance
 
FIDO and the Future of User Authentication
byFIDO Alliance
 
Beyond Passwords: FIDO and the Future of User Authentication
byFIDO Alliance
 
FIDO And the Future of User Authentication
byFIDO Alliance
 
2018 12-07 tokyo-seminar Brett McDowell
byFIDO Alliance
 
FIDO Alliance Vision and Updates
byFIDO Alliance
 
IdentityVerification IDV + Passkeys.pptx
byLoriGlavin3
 
Authenticate 2021: Welcome Address
byFIDO Alliance
 
2014 IoT Forum_ Fido Alliance
byCOMPUTEX TAIPEI
 
Introduction to FIDO Alliance
byFIDO Alliance
 
Introduction to FIDO: A New Model for Authentication
byFIDO Alliance
 
Introduction to FIDO Alliance: Vision and Status -Tokyo Seminar -Brett McDowell
byFIDO Alliance
 
FIDO Alliance: Year in Review Webinar slides from January 20 2016
byFIDO Alliance
 
Deploying FIDO Authentication - Business Considerations
byFIDO Alliance
 
Strong Authentication Trends in Government
byFIDO Alliance
 
Introduction to FIDO Authentication
byFIDO Alliance
 
Intelligent Authentication
byCA Technologies
 
FIDO & PSD2 – Achieving Strong Customer Authentication Compliance
byFIDO Alliance
 
FIDO Authentication in a Mobile Network
byFIDO Alliance
 
Fido Overview: Status and Future
byFIDO Alliance
 

More from FIDO Alliance

PPTX
Securing Account Lifecycles in the Age of Deepfakes.pptx
byFIDO Alliance
 
PPTX
FIDO Seminar: Perspectives on Passkeys & Consumer Adoption.pptx
byFIDO Alliance
 
PPTX
FIDO Seminar: Evolving Landscape of Post-Quantum Cryptography.pptx
byFIDO Alliance
 
PPTX
FIDO Seminar: Targeting Trust: The Future of Identity in the Workforce.pptx
byFIDO Alliance
 
PPTX
FIDO Seminar: New Data: Passkey Adoption in the Workforce.pptx
byFIDO Alliance
 
PPTX
FIDO Alliance Seminar State of Passkeys.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar: FIDO Tech Principles.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar: Securing Smart Car.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar: Strong Workforce Authn Push & Pull Factors.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar: Biometrics and Passkeys for In-Vehicle Apps.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar Workforce Authentication Case Study.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar FIDO Automotive Apps.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
byFIDO Alliance
 
PPTX
FIDO Munich Seminar Introduction to FIDO.pptx
byFIDO Alliance
 
PPTX
UX Webinar Series: Essentials for Adopting Passkeys as the Foundation of your...
byFIDO Alliance
 
PPTX
UX Webinar Series: Drive Revenue and Decrease Costs with Passkeys for Consume...
byFIDO Alliance
 
PPTX
UX Webinar Series: Aligning Authentication Experiences with Business Goals
byFIDO Alliance
 
PDF
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
byFIDO Alliance
 
PDF
FIDO Alliance Osaka Seminar: LY-DOCOMO-KDDI-Mercari Panel.pdf
byFIDO Alliance
 
Securing Account Lifecycles in the Age of Deepfakes.pptx
byFIDO Alliance
 
FIDO Seminar: Perspectives on Passkeys & Consumer Adoption.pptx
byFIDO Alliance
 
FIDO Seminar: Evolving Landscape of Post-Quantum Cryptography.pptx
byFIDO Alliance
 
FIDO Seminar: Targeting Trust: The Future of Identity in the Workforce.pptx
byFIDO Alliance
 
FIDO Seminar: New Data: Passkey Adoption in the Workforce.pptx
byFIDO Alliance
 
FIDO Alliance Seminar State of Passkeys.pptx
byFIDO Alliance
 
FIDO Munich Seminar: FIDO Tech Principles.pptx
byFIDO Alliance
 
FIDO Munich Seminar: Securing Smart Car.pptx
byFIDO Alliance
 
FIDO Munich Seminar: Strong Workforce Authn Push & Pull Factors.pptx
byFIDO Alliance
 
FIDO Munich Seminar: Biometrics and Passkeys for In-Vehicle Apps.pptx
byFIDO Alliance
 
FIDO Munich Seminar Workforce Authentication Case Study.pptx
byFIDO Alliance
 
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
byFIDO Alliance
 
FIDO Munich Seminar FIDO Automotive Apps.pptx
byFIDO Alliance
 
FIDO Munich Seminar Blueprint for In-Vehicle Payment Standard.pptx
byFIDO Alliance
 
FIDO Munich Seminar Introduction to FIDO.pptx
byFIDO Alliance
 
UX Webinar Series: Essentials for Adopting Passkeys as the Foundation of your...
byFIDO Alliance
 
UX Webinar Series: Drive Revenue and Decrease Costs with Passkeys for Consume...
byFIDO Alliance
 
UX Webinar Series: Aligning Authentication Experiences with Business Goals
byFIDO Alliance
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
byFIDO Alliance
 
FIDO Alliance Osaka Seminar: LY-DOCOMO-KDDI-Mercari Panel.pdf
byFIDO Alliance
 

Recently uploaded

PDF
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
PDF
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
PDF
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
AI and Zero Trust: What it takes to do it right
byMark Simos
 
PDF
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
PPTX
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
PPTX
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
PDF
Post-Hackathon-Learnings-Maximizing-Impact-Beyond-the-Event.pdf
byishantyadav1111
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PDF
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
PPTX
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
PDF
Python Automation in Action: Real-World Use Cases and Practical Implementation
byDenys Smirnov
 
PDF
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
PPTX
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
PDF
AI for Risk Management & Fraud Detection ppt.pdf
byalexmartincaneda
 
PPTX
WEEK 1-introduction of industrial arts grade 7.pptx
byrosierufinomaliongan
 
PPTX
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
AI and Zero Trust: What it takes to do it right
byMark Simos
 
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
Post-Hackathon-Learnings-Maximizing-Impact-Beyond-the-Event.pdf
byishantyadav1111
 
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
Python Automation in Action: Real-World Use Cases and Practical Implementation
byDenys Smirnov
 
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
AI for Risk Management & Fraud Detection ppt.pdf
byalexmartincaneda
 
WEEK 1-introduction of industrial arts grade 7.pptx
byrosierufinomaliongan
 
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 

FIDO Seminar: Authentication for a Billion Consumers - Amazon.pptx

  • 1.
    © FIDO Alliance2025 1 1 © FIDO Alliance 2025 Authentication for a Billion Consumers Mike Slaugh Principal Security Engineer
  • 2.
    © FIDO Alliance2025 2 Scaling leads to more … Users 123456 Authenticators Complexity
  • 3.
    © FIDO Alliance2025 3 3 © FIDO Alliance 2025 How do you scale an authentication system to a billion users?
  • 4.
    © FIDO Alliance2025 4 Scaling leads to more … Users 123456 Authenticators Complexity Custom er Experience Sim plify Choice
  • 5.
    © FIDO Alliance2025 5 #1 Customer Experience
  • 6.
    © FIDO Alliance2025 6 Two Roles in Authentication Systems Security Owner Experience Owner
  • 7.
    © FIDO Alliance2025 7 FRESH Security Certified
  • 8.
    © FIDO Alliance2025 8 FRESH Experience Certified
  • 9.
  • 10.
    © FIDO Alliance2025 10 FRESH Security Certified FRESH Experience Certified
  • 11.
    © FIDO Alliance2025 11 Combine Roles? ?
  • 12.
    © FIDO Alliance2025 12 Considerations for Customer Obsession Create a step-by-step experience to guide your customers through the authentication process Authenticate customers at one time. Avoid constantly redirecting the user back for more authentication Simple Create defaults and preferences based on historical usage Predict which authentication methods apply to the customer and have them ready Applicable Eliminate confusing terms and phrases that may only be meaningful only in certain languages or cultures. Accommodating
  • 13.
    © FIDO Alliance2025 13 #2 Simplify
  • 14.
    © FIDO Alliance2025 14 Authentication Taxonomy Verify An establishment of trust in an identity claim that facilitates downstream activities and events. Enroll An agreement between parties of the credentials that will be used going forward. Recover An event when a user no longer has access to the previously agreed upon credentials and needs another way to access their account. Authenticate A ceremony where credentials are presented and validated to quickly and easily reverify the user’s identity
  • 15.
    © FIDO Alliance2025 15 Authenticator of Choice A1 A2 ID + AuthN Know • Password • PIN • Passphrase Have • Security Keys • Smart Card • One Time Codes • Device Recognition • TOTP • Authenticator Apps • Digital Certificate • Device Bound Passkey Are Biometrics • Touch • Face • Voice • User Name • Email Address • Phone Number • Customer Number Allow users to have multiple options and let them choose based on current situation Identifier Authentication • Multifactor Authentication • Single factor Authentication + =
  • 16.
    © FIDO Alliance2025 16 #3 Choice
  • 17.
    © FIDO Alliance2025 17 Which Authenticators should you use? 1 2 3 4 5 6 Trust Thresholds should determine which authenticators the program will support Authenticator High Trust Med Trust Security
  • 18.
    © FIDO Alliance2025 18 Login Please sign in to continue. Email user123@gmail.com Don’t have an account? Sign Up Remember me NEXT Verify Please choose a verification method Password Passkey Send a code to my phone Use an authenticator app More Options? NEXT Password Please enter your password Password LOGIN
  • 19.
    © FIDO Alliance2025 19 Trust Matrix • Choose Authenticators that are high trust • Don’t allow combination of lower trust authenticators A1 A2 High Med High Med Trust Thresholds should determine which authenticators the program will support
  • 20.
    © FIDO Alliance2025 20 In Summary … Build experiences based on customer needs 1 Simplify the complexity of the ecosystem 2 Provide several options to authenticate 3
  • 21.
    © FIDO Alliance2025 21 21 © FIDO Alliance 2025 Thank you

Editor's Notes

  • #2 Users Edge cases become use cases Different markets will have different capabilities Complexity Complexity is the enemy of scaling Authenticators There is no “one authenticator” rule them all