Académique Documents
Professionnel Documents
Culture Documents
1. Current Issues
Password
Traditional passwords are prone to several attacks. The security of the password-only based
systems
relies on user completely. If a good password is not chosen, the degree of randomness is very less
making the system very insecure. Further, users usually use same or similar passwords across
multiple systems; which indeed makes the situation more worse.
Online Auth Request Local Device Auth Success
1 2 3 ü f
ID + Password Done
Insert USB and
Press Button
U2F Server U2F Authenticator
A web enabled server that implements A local authentication mechanism that is abl
FIDO U2F protocol for Server e to perform user registration and authentic
ation after traditional password is authentic
ated.
3. How does U2F Work?
Scalable
- Works across any number of services
Secure
- Protects against phishing & MITM*
- Verifies user presence
- User verification using IRIS matching
Open Standard
- Native platform/browser support
4. Introduction of Irisys Lockit U2F
2 Authentication Example
(Google)