Group items tagged

"In a few years' time, you may have the opportunity to carry a device with you that authenticates your identity wirelessly to systems and mobile devices. And your employer may require you to carry a wireless authenticator to apply the same degree of access policies to your headquarters building as it does to your network. This may end up becoming the same device. There are folks who believe that should be the mobile phone, but there may yet be solid arguments against it, including this one: Do you really want your wireless carrier involved in your employer/employee relationships? Mapping the Future During an unscheduled demo at the RSA Conference here yesterday, senior officials from Google introduced a working model for a next-generation authentication device - a device to go beyond two-factor authentication systems, which have been exploited by "phishers." For now, this unnamed device provides an instantaneous second factor of authentication without needing to be plugged into a USB port, like current security keys today that follow the open FIDO U2F standard. Google first incorporated support for physical keys like Yubikey into its draft of FIDO U2F in October 2014."