Uniken strongly believes that the end of username and passwords as a primary authenticator is finally here. In fact, we believe that with the rapid growth of the Fast Identity Online Alliance and the adoption of it’s standards, we may see passwords disappear entirely in the next 3 years!
Uniken is, itself, a proud member of the FIDO Alliance and sees our core goals strongly aligned with that of FIDO. The Alliance’s aim is to develop technical specifications that define an open, scalable, and interoperable set of mechanisms that reduce the reliance on passwords to authenticate users. We believe that our REL-ID channel can enhance security of all interactions, while remaining flexible enough to supplement all FIDO based tools.
REL-ID can enhance security of all interactions, while remaining flexible enough to supplement all FIDO interactions.
Uniken’s REL-ID protocol fully meets the NIST 800-63B requirements for being Verifier Impersonation Resistant (VIR). It uses a split symmetric key that is further enhanced by being bound to device fingerprints, application fingerprints, and common user authentication elements. It is these user authentication elements that we believe can be enhanced by integrating directly with the FIDO ecosystem.
For the user authentication component, Uniken supports the FIDO Alliance UAF standard. By allowing flexible UAF, we provide the industry’s broadest choice of biometrics in addition to our secure channel technology. In addition to the FIDO enabled authenticators, REL-ID offers core functionality on various platforms, such as the iPhone’s TouchID and Android fingerprint service. These core authenticators are enabled as a part of our base product offering.
REL-ID customers can augment, re-verify, step-up, and continuously authenticate any transaction or session.
With the REL-ID channel protecting all interactions, the Uniken product suite can enable biometrics for both login, continuous authentication, and transaction verifications. REL-ID customers can augment, re-verify, step-up, and continuously authenticate any transaction or session. By assigning levels of trust to each type of enabled authenticator, customers can meet the necessary security for any transaction while allowing their end users the flexibility to authenticate how they see fit. Any user, subgroup, transaction, application function, etc. can be set with a base level of trust at login - requiring a certain type of authentication. All of these options can be configured from an enterprise console. With the power of this continuous and flexible authentication, REL-ID allows you to mix and match authenticators across your customer base depending the needs of the product, user, or region.