View
19
Download
0
Category
Preview:
Citation preview
Identity Management
Who we are ?
Our current work
Mobile Authentication Interoperability
for Digital Certificates
How ?
Government Use Case
6
Individual 1. Smart Device controlled by Individual & trusted by the organization
2. An authority issues a vetted identity in form of certificate. –Derived Credential 3. Certificate
bound to device
Individual 4.Used for access & transactions to commercial websites
Why FIDO
ü Complements current standard protocols
ü Supports a surrogate model for authentication and access
ü Abstracts user authentication from the application
ü Change authentication without impacting application
Key Value Points• Single credential – multiple uses
o Strong Authentication: Proof of identity based on vetted credential & PIN
o Privacy Enhancing: Private data stored within user’s device, not shared with Relying Party
o Standards-Based: Fast Identity Online (FIDO)
o Compliance: Leverages native cryptography in smartphone, meets NIST requirements for Derived Credentials
o Storage: Can support secure container as a storage mechanism.
Why is this important• Identity is going mobile
• Democratize identity – breaking identity silos
• Improve the user experience
• Enable a richer & more secure experience by combining authentication within the conversation
• Regulations are changing to protect user
• Improves customer insights – providing user, device & transactional information
• Reduces fraud
Monage link
The problem • Conversational interfaces are not a point to point
solution o User to cloud to bot o Bot to cloud to bot o User to cloud to bot cloud to bot
• Conversational bots have one identity but multiple personas o In one they are the RP – looking to authenticate the user for a transaction o On the following one they are the user – looking to transact with another RP –
becoming the surrogate to the end user o Identity systems must be able to offer such flexibility
• FIDO can enable it • Surrogating , Federation , Strong Authentication
• How to conveniently authenticate the user delivering a natural experience
How it relates to this event
• A user centric identity focus can drive adoption and introduce new services delivers by conversational assistants.
Identity is more than just security
• Mobile identity can break down the application silos by abstracting the authentication activity and creating a an experience that obfuscates the background complexity
• High assurance authentication enables commerce & new services by offering secure & private transactions
• Authentication must become part of the conversational
• Authentication will become dynamic based on the company & risk requirements
User Relying Party
Digital wallet of vetted credentials
2. Who are you?
Smart phone Model M, GPS Identity Certificate
Credentialing Agency 3. I am:
4. Let us guide you?
1. I need some help?
Conclusion• Companies want to engage the user • Users want a customized & secure experience
• New identity models using standards will deliver a vetted user and provide the user with the same convenient experience across platforms
Thank You
Michael Queralt
Queralt Inc michael@queraltinc.com
(914) 450-0879 @caumike
www.queraltinc.com
www.xauth.co
16
Recommended