Overview#

Universal Authentication Framework is an Authentication Method that uses the FIDO protocol that authenticates a user locally, before the local device used to access the online service authenticates itself to the server.

No user password is required.

The FIDO Authenticator authenticates the user using a PIN, biometric factor (e.g., facial recognition, voice recognition, iris recognition, fingerprint recognition), or similar data before proving presence to the online services.

The PIN or biometric data should be securely stored, thereby preventing these credentials from leaving the local device.

FIDO Standards define a common interface for whatever local authentication Factor the user exercises.

More Information#

There might be more information for this subject on one of the following:

• FIDO protocols
• Fast IDentity Online
• UAF
• WebAuthN
• What To Do About Passwords