FIDO® CERTIFIED AUTHENTICATION FROM THE MOST TRUSTED NAME IN BIOMETRIC IDENTITY ASSURANCE

FIDO authentication on Daon’s IdentityX platform gives you the world’s best device-side login experience: more secure than passwords and SMS OTPs, simpler for consumers, and easier for service providers to deploy and manage.

WHAT IS THE FIDO ALLIANCE? 

The FIDO (Fast IDentity Online) Alliance is an open industry association that proposes standards for strong, interoperable online authentication. The FIDO Alliance is driven by hundreds of global tech leaders, including board members from Microsoft, Google, Samsung, Fujitsu, Amazon, Mastercard, Visa, and Daon.

Daon has been a FIDO board member since 2014 and is heavily involved in the technical working groups that create the FIDO specifications.

 

WHAT IS FIDO UAF?

The FIDO Universal Authentication Framework (UAF) specification allows services to offer passwordless and multi-factor security. The user authenticates locally to their device and then the device authenticates securely to IdentityX using public key cryptography. This ensures that the client's credentials are not transmitted and cannot be phished. The IdentityX server together with the IdentityX Client SDKs on both iOS and Android have been certified UAF compliant. IdentityX provides the scalability, configurability, reliability and performance around that specification. The extensions to the FIDO UAF specification allow Daon to provide customers with further benefits over and above the specification.

 

WHAT IS FIDO2?

FIDO2 is the newest FIDO specification, and Daon is among the very first to be certified for the server component. With FIDO2, the advantages of FIDO are now available in web browsers such as Microsoft Edge, Mozilla Firefox and Google Chrome. FIDO2 is complementary to UAF, which is still required for the rich mobile application channel. IdentityX fully supports Web Authentication (WebAuthn) and this allows relying parties to add hardware tokens (U2F) and in-built platform authenticators such as Windows Hello and Android Fingerprint readers to their services.

 

WHAT ARE THE KEY BENEFITS OF THE DAON CERTIFIED FIDO AUTHENTICATION SOLUTION?
  • It’s More Secure. FIDO (via the certified IdentityX platform) delivers true non-repudiation of identity credentials in accordance with the most widely adopted and thoroughly tested FIDO protocols for online authentication, which prevent both phishing and man in the middle attacks. Google, for instance, reports that not one of its 85,000+ employees has been successfully phished on a work-related account since early 2017.
  • It’s Futureproof. FIDO ensures automatic compatibility with new authenticators and devices as they come to market, which futureproofs your investment and unlocks new capabilities without any additional coding. Furthermore, Daon’s SDK-based authenticators can provide consistent authentication experiences on current and future devices without reliance on biometric hardware.
  • It’s Easier. To implement FIDO, your app developers need only integrate with the Daon SDK once. From there, Daon handles the integrations into each and every platform, saving you time, money, and peace of mind.
  • It Costs Less. The cost of deploying FIDO via IdentityX as either a COTS product or as a service is significantly cheaper than the total ownership cost of developing a solution in-house and keeping it current with all the platforms and devices.
  • It Has a Management Console. Daon’s FIDO Administration Management Console displays a full history of all user registrations, the authenticators used, and a non-repudiable audit trail of all authentications performed.
  • It’s Flexible. Not only does IdentityX use the FIDO standard protocol for all communications during authentication, but it also utilizes vendor extensions to the protocol to offer features outside of the FIDO standard, such as device identification and server-side authentication. These features are policy-driven and can be enabled on a per-use-case basis via the easy-to-use administration console.
  • It’s The New World Standard. FIDO has become the de facto industry standard in the Americas, Europe, and Asia Pacific. Of particular note, FIDO is fully compliant with key international regulatory requirements like PSD2 (dynamic linking) and GDPR.

  

WHAT WILL I NEED TO DEPLOY FIDO AUTHENTICATION RIGHT AWAY?

All you’ll need is a certified FIDO authentication platform like Daon’s IdentityX. In fact, it’s so easy to get started, we’re offering a FIDO Quick Start program that gives qualifying organizations a 90-day free trial to test a working implementation of a FIDO UAF or FIDO2 server.

FIDO

 

Learn more about IdentityX and FIDO

For more information on Daon, the FIDO compliance of IdentityX, or our work with FIDO Alliance on ease of use, standardization, privacy and security, get in touch with us here.