What is FIDO (Fast Identity Online)? - Definition from WhatIs.com

Definition

FIDO (Fast Identity Online)

Part of the Authentication glossary:

FIDO (Fast ID Online) is an open standard for a secure and easy-to-use universal authentication interface created to address the lack of interoperability among strong authentication devices.

The FIDO standard supports multifactor authentication and strong features like biometrics. FIDO stores supporting data in a smartphone to eliminate the need for multiple passwords. FIDO is much like an encrypted virtual container of strong authentication elements including: biometrics, USB security tokens, Near Field Communication (NFC), Trusted Platform Modules, embedded secure elements, smartcards and Bluetooth. Data from authentication sources is used for the local key, while the requesting service gets a separate login to keep user data private.

 

FIDO works through two different protocols for two different user experiences. The Universal Authentication Framework (UAF) protocol allows the user to register an enabled device with a FIDO-ready server or website. Users authenticate on their devices with fingerprints or PINs, for example, and log in to the server using a secure public key. The Universal Second Factor (U2F) protocol is designed to authenticate users with a strong second factor, such as a USB touchscreen key or an NFC tap on a mobile device.

 

FIDO's local storage of biometrics and other personal identification is intended to ease user concerns about personal data stored on an external server or in the cloud. By abstracting the protocol implementation, FIDO also reduces the work required for developers to create secure logins.

FIDO is developed by the FIDO Alliance, a non-profit organization formed in 2012.  Alliance board-level members include ARM, Blackberry, Google, Master Card, Microsoft, PayPal, Samsung, Synaptics and Visa.

This was last updated in July 2014
Contributor(s): Matthew Haughn, David Strom
Posted by: Margaret Rouse

Related Terms

Definitions

  • universal authentication

    - Universal authentication is a network identity-verification method that allows users to move from site to site securely without having to enter identifying information multiple times. (WhatIs.com)

  • full-disk encryption (FDE)

    - What is full-disk encryption (FDE)?Full-disk encryption (FDE) is encryption at the hardware level. (WhatIs.com)

  • risk-based authentication (RBA)

    - Risk-based authentication (RBA) is a method of applying varying levels of stringency to authentication processes based on the likelihood that access to a given system could result in its being comp... (WhatIs.com)

Glossaries

  • Authentication

    - Terms related to authentication, including security definitions about passwords and words and phrases about proving identity.

  • Internet applications

    - This WhatIs.com glossary contains terms related to Internet applications, including definitions about Software as a Service (SaaS) delivery models and words and phrases about web sites, e-commerce ...

Ask a Question About FIDO (Fast Identity Online)Powered by ITKnowledgeExchange.com

Get answers from your peers on your most technical challenges

Tech TalkComment

Share
Comments

    Results

    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.