Working with FIDO and the WebAuthn API

Introduction This article continues from Introduction to FIDO. I’ll cover the WebAuthn API in more detail and share my experiences from working with the API. I’m also introducing an interactive WebAuthn API testing tool you can use to explore the … Read More

Right to X

Right to X – Asserting Your (Delegated) Rights

In my previous blog I talked about the classes of identity, the value of organisation identity, and how that leads towards Ubisecure’s vision of the simplification of automation of interactions: “to simplify the automation of interactions through precise understanding of … Read More

FIDO

Introduction to FIDO (Fast IDentity Online)

In this first article we will take a high-level look at FIDO 2.0 and WebAuthn. For a more in-depth look at working with FIDO and the WebAuthn API, check out this blog. FIDO’s vision is to replace passwords and many … Read More

Open ID Connect CIBA

Ubisecure ahead of the curve with Open ID Connect CIBA integration

OpenID recently announced that CIBA, which stands for ‘Client initiated Backchannel Authentication (Flow)’, has been approved by MODRNA for the Implementer’s Draft stage. Ubisecure has participated in the innovation work and specification of CIBA and is an early adopter of … Read More

FinTech Identity Authentication

Why don’t FinTechs use strong authentication?

Remember when companies used painfully slow and expensive wire transfers? When small businesses wasted time and money maintaining checking accounts? When investments in stock markets were only for those with deep pockets? Luckily, FinTechs came onto the scene and changed … Read More

Customer IAM on-premise

What About Risk-Based Authentication?

Over the years, Ubisecure has helped several organisations that have services where it is of outmost importance to be sure that a person logging in to a service is really who they claim to be. A solution to this, as … Read More

The Password Must Go

The world is full of ideas and inventions that seemed like a good idea at the time. Only later we discover that they were actually very bad ones. Tobacco was a very popular trend back in the day – until … Read More

Appropriate Identity

A lot of online services today take advantage of social media identities. You can start using a subscription service such as Spotify or Viaplay service with your Facebook identity. Social media identities minimize friction in adopting new consumer services. The … Read More

Single Sign-On vs Step-up Authentication

When delivering online services to your customers, there are two terms that come up quite often that might require some explanation through comparison. Single Sign-On and Step-up authentication are technologies to help your customers navigate your applications. Visually, Single Sign-On … Read More

API Security and CIAM

While browsing through LinkedIn, I came across this table in a post from Mark O’Neill, an analyst from Gartner. Looking at his very brief post promoting their $195 research note, I realised that at least one third of (their) view … Read More