The launch comes at a time when password-based personal authentication has been criticised for the high risks of harm from identity fraud and unauthorised use of services, such as list attacks, which target repeated use of the same password for multiple services, and key loggers, which record a keyboard's activity to steal passwords. At the same time, biometric-authentication-equipped devices, such as smartphones, are becoming familiar to users.
With this service, Fujitsu will provide companies that offer online services with the servers and software necessary to implement FIDO, services that support the construction of cloud environments, and also software development kits and development support for incorporating FIDO into client-side applications.
Customers can use this service to build online personal authentication systems with robust security and that do not require passwords for a variety of situations, such as online banking and shopping, ticket arrangements, and car sharing. This also reduces the burden of getting online authentication services up and running. In addition, because this service supports facial recognition data obtained through camera-equipped smartphones and other biometrics, the number of supported devices on the client side can be dramatically expanded.
Fujitsu joined the FIDO Alliance, an international organisation which promotes the standardisation of password-less online authentication technology, as a sponsoring member, in August 2016. FIDO is a new authentication method that resolves the vulnerabilities of password-based online authentication by using biometric authentication and public key encryption which do not depend on IDs or passwords.
Customers can use this service to build online personal authentication systems with robust security and that do not require passwords for a variety of situations, such as online banking and shopping, ticket arrangements, and car sharing. This also reduces the burden of getting online authentication services up and running. In addition, because this service supports facial recognition data obtained through camera-equipped smartphones and other biometrics, the number of supported devices on the client side can be dramatically expanded.
Fujitsu joined the FIDO Alliance, an international organisation which promotes the standardisation of password-less online authentication technology, as a sponsoring member, in August 2016. FIDO is a new authentication method that resolves the vulnerabilities of password-based online authentication by using biometric authentication and public key encryption which do not depend on IDs or passwords.
With FIDO, users simply register their FIDO-compatible device, such as a smartphone, with the online service they want to use, enabling authentication based on biometric information already stored on their device. Businesses that provide online services can accept authentication from a wide variety of FIDO devices, just by adding support for FIDO to their server and client applications. By adopting an authentication method using public key encryption, they can also reduce their data storage risks because it is no longer necessary to manage the biometric information of the users of their service on their own servers.
 |
| Source: Fujitsu. Schematic for FIDO-based biometric authentication. |
Going forward, Fujitsu plans to expand the service to cover authentication on a variety of devices. The company aims to provide the service for 10 million IDs by fiscal 2018.
No comments:
Post a Comment