Overview[1][2]#
Universal Second Factor (U2F) protocol is a FIDO protocol is an open authentication standard that strengthens and simplifies Multi-Factor Authentication using specialized USB or NFC devices based on similar security technology found in Smart Cards.Universal Second Factor initially developed by Google and Yubico, with contribution from NXP Semiconductors, the standard is now hosted by the FIDO Alliance.
Universal Second Factor allows online services to augment the security of their existing password infrastructure by requiring a Hard token using a FIDO Authenticator.
The authenticator provides an additional Authentication Factor to augment user login.
Universal Second Factor Authentication process#
In a U2F deployment the Authentication process is similar to- the user logs in to an Service Provider as usual (ie using Password Authentication)
- the user is presented with a Challenge user "unlocks" the U2F device by using a Personal Entity presence.
- U2F device proves possession of the Private Key to the Service Provider by signing the challenge.
Universal Second Factor Challenges#
There are some Universal Second Factor Challenges that need to be considered.More Information#
There might be more information for this subject on one of the following:- Credential Management
- FIDO protocols
- Fast IDentity Online
- U2F device
- Universal Second Factor Challenges
- WebAuthN
- What To Do About Passwords
- [#1] - Universal_2nd_Factor
- based on information obtained 2017-04-02
- [#2] - Smart Card Technology and the FIDO Protocols
- based on information obtained 2016-05-21
- [#2] - USB-Dongle Authentication
- based on information obtained 2017-03-21