The year 2020 will be remembered as the year in which the world suffered one of the worst viral pandemics and one of the worst cyber pandemics in history, simultaneously. As COVID-19 spread rapidly throughout the global population, a breach on IT firm SolarWinds started a supply-chain attack of an unprecedented magnitude, affecting thousands of organizations, including the Pentagon; the White House; the US Army; the US Departments of Treasury, Commerce, and Energy; IT giants like Microsoft, Cisco, Deloitte, Intel; and others.

FIDO travaille depuis près d’une décennie sur un système permettant aux utilisateurs de se connecter à leurs comptes en ligne via un protocole sans mot de passe généralement sous la forme d’un code PIN ou de données biométriques telles que les empreintes digitales, les scans de l’iris ou la reconnaissance vocale.

Worryingly, drivers of connected vehicles may not control their car, says Julia O’Toole, founder of security company MyCena. All the vehicles’ internet-facing communications are entry points to hijack your car or tamper with signals; it’s a serious matter for the auto industry. 

Multi-factor authentication (MFA) is now a common aspect of access control systems, strengthening password-only approaches. However MFA has proven to be vulnerable to attackers and over reliance on it can put an organization at risk. Julia O’Toole explains…

Instead of passwords, FIDO proposes to have those stored on your device and the operating system’s associated cloud sync service. Your phone becomes the access point, and access is authenticated via inputting your phone’s PIN or using fingerprint or face identification. This would reduce the reliance on passwords and give users a way of keeping their credentials to hand as they move from device to device.