FIDO, Federation & Facebook Social login

FIDOAlliance 618 views 22 slides Jun 28, 2017
Slide 1
Slide 1 of 22
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11
Slide 12
12
Slide 13
13
Slide 14
14
Slide 15
15
Slide 16
16
Slide 17
17
Slide 18
18
Slide 19
19
Slide 20
20
Slide 21
21
Slide 22
22

About This Presentation

Derek Hanson, Director of Solution Architecture and Standards, Yubico, discusses U2F and Federation, Facebook Integration & Social Login

Size: 1.27 MB
Language: en
Added: Jun 28, 2017
Slides: 22 pages

Slide Content

All Rights Reserved | FIDO Alliance | Copyright 20171
FIDO, Federation
& Facebook Social login

All Rights Reserved | FIDO Alliance | Copyright 20172
Derek Hanson
Director of Solution Architecture
and Standards

All Rights Reserved | FIDO Alliance | Copyright 20173
AGENDA
●FIDO U2F: A strong second-factor
●U2F and Federation
●Facebook Integration & Social Login

●Simple, single gesture authentication
●Scalable, one device works across an unlimited number of
sites
●Secure, protects against phishing and man-in-the-middle
attacks
●Privacypreserving, no secrets shared between sites
●Open Standard, platform/browser support, no 3rd-party
protocol
All Rights Reserved | FIDO Alliance | Copyright 20174
Why FIDO?

All Rights Reserved | FIDO Alliance | Copyright 20175
Where Does FIDO Fit?
Identity Proofing
User Management
Authentication
Federation
Passwords Risk-BasedStrong
MODERN
AUTHENTICATION
Single
Sign-On

All Rights Reserved | FIDO Alliance | Copyright 20176
FIDO U2F Challenge/Response Flow

All Rights Reserved | FIDO Alliance | Copyright 20177
Notable RPs using FIDO U2F

All Rights Reserved | FIDO Alliance | Copyright 20178
FIDO U2F and Federation
●FIDO U2F Authentication protects
login to federation account, which
holds the “keys to the kingdom”
●FIDO U2F security benefits extend
to federated logins
●Strengthens federation protocols:
SAML, OAuth 2.0

All Rights Reserved | FIDO Alliance | Copyright 20179
U2F, Federation, and Facebook
●Facebook added support for FIDO
U2F in January 2017
●Social logins (Login with ‘X’)
extends FIDO U2F security benefits
to federated account access

Benefits:
●Phishing protection
●Fast, secure logins (and social logins)
●Interoperable (1 token, many services)
All Rights Reserved | FIDO Alliance | Copyright 201710
U2F, Federation, and Facebook

●Facebook social logins use OAuth
2.0 and OpenID Connect-like
extensions (Facebook Connect)
●SAML used for enterprise
federation
All Rights Reserved | FIDO Alliance | Copyright 201711
Facebook Federation

Scenario: Currently Logged into Facebook with
username/password & U2F Token
All Rights Reserved | FIDO Alliance | Copyright 201712
Relying Party:
IdP:
U2F, Federation and Facebook

All Rights Reserved | FIDO Alliance | Copyright 201713

All Rights Reserved | FIDO Alliance | Copyright 201714

All Rights Reserved | FIDO Alliance | Copyright 201715

All Rights Reserved | FIDO Alliance | Copyright 201716

●Enable Social Authentication for Account Recovery
●Enable Users to Opt-Out of Managing Passwords
●Enable Secure and Simple to Use Social Login
●Become a Secure Identity Provider for Your
Employees, Customers, Vendors, Partners, etc.
How does FIDO & Federation
benefit me?
All Rights Reserved | FIDO Alliance | Copyright 201717

Read the U2F Specifications FIDO specs& github.com/dainnilsson/u2f-tutorial
Build Your Own Server https://developers.yubico.com/U2F/Libraries/List_of_libraries.html
Use Standalone Server dev.yubi.co/u2fval
Use the Online Service u2fval.appspot.com
Yubico U2F Demo Server demo.yubico.com/u2f
Google U2F Demo Server u2fdemo.appspot.com
Start Building a Better
Authentication Stack Now!
All Rights Reserved | FIDO Alliance | Copyright 201718
Learn

All Rights Reserved | FIDO Alliance | Copyright 201719
Thank You!
Derek Hanson
[email protected]

All Rights Reserved | FIDO Alliance | Copyright 201720
Extra slides

All Rights Reserved | FIDO Alliance | Copyright 201721
FIDO + Federation
Relying PartyIdP

All Rights Reserved | FIDO Alliance | Copyright 201722
AuthenticatorUser verification FIDO Authentication
Require user gesture before
private key can be used
Challenge
(Signed) Response
Private key
dedicated to one app
Public key
How does FIDO Work?
Tags
u2f cloud identity summit fido authentication fido alliance fido identity social login yubico facebook integration
Categories
Technology
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 618
  • Slides 22
  • Favorites 3
  • Age 3098 days
Related Slideshows
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx 11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
85 views
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx 10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
79 views
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx 13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
76 views
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx 11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
62 views
Know for Certain 21
Know for Certain
DaveSinNM
36 views
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx 17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
41 views
View More in This Category