|
FIDO Authentication Standard: Key Applications for Securing Information Exchange
|
Morteza Asadi *1   , Mohammad Reza Zamani1 , Kasra Tawakoli1 |
| 1- Rahavard Samanehaye Amn (RAHSA) |
|
|
Abstract: (2020 Views) |
| Passwords have been utilized as the primary means of authentication since the inception of the World Wide Web and the introduction of online services. The security risks associated with the use of passwords and their vulnerabilities to various types of cyberattacks have rendered this method no longer secure. In recent years, online service providers have sought to protect their users and data from cyber threats by implementing various multi-factor authentication methods. Although these methods have been successful in reducing the incidence of security breaches, they have generally resulted in increased complexity for users. The FIDO standard employs asymmetric encryption, mandates the storage of the private key on the user’s device, and combines it with biometric factors, thereby enabling the most secure authentication method for systems while simplifying the process for users [1-4]. This standard monitors the entire authentication process and prevents potential risks by establishing regulations within operating systems, browsers, and authentication tools. Rahavard Samanehaye Amn Company has implemented this standard locally, offering FIDO authentication under the product name ”Neshane” for smart phones. This article discusses the applications, specifications, and capabilities of this standard and the developed product. |
Article number: 4 |
| Keywords: Multi Factor Authentication, FIDO, Asymetric Cryptography, Biometric, Passwordless |
|
|
Full-Text [PDF 1554 kb]
(880 Downloads)
|
Type of Study: Technical Paper |
Subject:
Special
Received: 2024/04/3 | Accepted: 2024/08/31 | Published: 2024/08/31
|
|
|
|
|
|
