Identity, Unlocked. cover image

Identity, Unlocked.

WebAuthn and FIDO2 with John Bradley

Nov 9, 2020
In this episode, John Bradley, Senior Standard Architect at Yubico and author of many important specifications pertaining to identity management including FIDO2, talks about the origins and development of FIDO2 and WebAuthn, the flow of exchanging objects between the front end and back end of a website, RFID chip implants for contactless payments, and ongoing work and new features in WebAuthn and FIDO2.
25:54
Creator website

Episode guests

John Bradley

Podcast summary created with Snipd AI

Quick takeaways

  • FIDO2 and WebAuthn are standards developed to enable passwordless login experiences and enhance security, encryption, data protection, and usability.
  • Account recovery in FIDO and WebAuthn authentication requires the registration of multiple phishing-resistant authentication methods and the consideration of federated accounts as backup options.

Deep dives

The Evolution of FIDO and WebAuthn

The podcast episode discusses the evolution of FIDO (Fast Identity Online) and WebAuthn (Web Authentication). FIDO was initially developed by Google and PayPal to eliminate passwords and enable biometric authentication on mobile devices. U2F (Universal Second Factor) authentication, where a security key is used as a second factor, became a part of FIDO. Eventually, U2F and the original FIDO standards merged to form Fido2, which is commonly referred to as Fido2. WebAuthn, part of the W3C (World Wide Web Consortium) standard, was developed to enable browser buy-in and facilitate the interaction between relying parties and web browsers. CTAP (Client to Authenticator Protocol) allows the browser to communicate with authenticators. FIDO authentication is now being integrated into various platforms, like Apple's Face ID, to offer passwordless login experiences.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.
App store bannerPlay store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode