The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
2019 FIDO Tokyo Seminar - Welcome Keynote Andrew Shikiar
1. All Rights Reserved | FIDO Alliance | Copyright 20191
TOKYO SEMINAR
ANDREW SHIKIAR
EXECUTIVE DIRECTOR
CHIEF MARKETING OFFICER
2. All Rights Reserved | FIDO Alliance | Copyright 20192
heading
SOLVING THE PASSWORD PROBLEM
3. All Rights Reserved | FIDO Alliance | Copyright 20193
A global industry movement
+ Sponsor members + Associate members + Liaison members
4. All Rights Reserved | FIDO Alliance | Copyright 20194
FIDO Leadership in Japan
FIDO Japan
Working
Group
5. All Rights Reserved | FIDO Alliance | Copyright 2019555555
Open Standards
Public Key Cryptography
Single Gesture
Phishing Resistant MFA
authentication
SECURITY
USABILITY
Poor Easy
WeakStrong
6. All Rights Reserved | FIDO Alliance | Copyright 20197
Key Progress Points in 2019
The Year of
FIDO Platform
Support
New &
Noteworthy
Deployments
Forward
Momentum
& New
Work Areas
7. All Rights Reserved | FIDO Alliance | Copyright 2019888888
FIDO HISTORY
FIDO UAF,
FIDO U2F
1.0 Final
First
DeploymentsInitial
Specifications
Review Draft
Alliance
Announced
FEB
2013
FEB
2014
FEB-OCT
2014
DEC
2014
MAY
2015
Submission
of FIDO Web
API into
W3C, work
begins
NOV
2015
Certification
Program
Launched
2015-
2018
Spec
enhancements,
deployments
continue
2018
Security level,
biometric
certifications
launched
8. All Rights Reserved | FIDO Alliance | Copyright 2019999999
CTAP WebAuthn
The next step for
mass adoption:
FIDO support in
the platform
9. All Rights Reserved | FIDO Alliance | Copyright 201910
FIDO2 drive to platform ubiquity
Now shipping in Safari 13 for MacOS
Support for FIDO2 in iOS 13.3 Beta
Hello
Since May 2018
Broader matrix of support in 2019
10. All Rights Reserved | FIDO Alliance | Copyright 201911
Growth in addressable user base
Hello
Over 2
Billion
Devices
11. All Rights Reserved | FIDO Alliance | Copyright 201813
Global market validation
13. All Rights Reserved | FIDO Alliance | Copyright 201915
of users had answers
extracted via email phishing.92%
of questions had answers routinely
listed publicly in online social
networking profiles.
16% of users were unable to recall
their answers when needed.40%
GOOGLE SURVEY, “SECRETS, LIES AND ACCOUNT RECOVERY”
Only 9% of companies warn
employees about IoT risks
How one lightbulb could
allow hackers to burgle your
home
Hackers used new weapons to
disrupt major websites across
U.S.
Security is IoT’s biggest problem
KBA is no longer adequate for identity verification
Gaps in adjacent areas need to be filled for
FIDO mission to be realized
14. All Rights Reserved | FIDO Alliance | Copyright 201916
Our plan to fill these gaps: New work
areas
Device & User Verification
and Onboarding
Authentication
Federation
Single
Sign-On
Strengthen identity verification assurance
to support better account recovery
Automate secure device onboarding to
remove password use from IoT.
Device & User Verification
and Onboarding
IDWG
IoT
TWG
15. All Rights Reserved | FIDO Alliance | Copyright 201919
What’s Next: Developer Focus
Successful hackathon held
in Korea – coming to other
regions
16. All Rights Reserved | FIDO Alliance | Copyright 201920
What’s next: First FIDO Conference
June 2-3 Seattle, USA
www.authenticatecon.com
17. All Rights Reserved | FIDO Alliance | Copyright 201921
THANK YOU!
ANDREW SHIKIAR
EXECUTIVE DIRECTOR
CHIEF MARKETING OFFICER