Cloud Security Alliance and FIDO Team to Promote Standardized Mobile Authentication for Cloud Services

Cloud Security Alliance and FIDO Team to Promote Standardized Mobile Authentication for Cloud Services

By Laura Stotler

As the cloud grows in scale and mass, cloud providers face an increasingly complex array of security and authentication issues. The Cloud Security Alliance (CSA) hopes to tackle some of those challenges by promoting a standards-based approach to handling large-scale cloud services, and particularly, mobile authentication within the cloud.

The organization has signed a Memorandum of Understanding with the Fast Identity Online (FIDO) group that has the two teams working together to promote a standardized approach to cloud services authentication. According to the CSA, providing scalable authentication from mobile devices to multiple, heterogeneous cloud providers is a crucial component toward the growth of cloud solutions. With mobile devices increasingly becoming the primary point of access to cloud services, authentication and identity standards must be able to handle the challenges of securing mobile connections to the cloud.

"The last 12 months has seen a shift in the cloud authentication landscape as more and more providers are looking to add additional layers of protection," said Jim Reavis, CEO, Cloud Security Alliance. "The security and usability challenges this creates means that a standards-based approach is the only practical direction.”

"FIDO shares many of the same aims as the Cloud Security Alliance," added Michael Barrett, president of the FIDO Alliance. "As we have been working on a common, industry standard for strong authentication, we have found ourselves engaged with cloud service providers who have clear requirements to deliver simple, strong authentication to meet their customers' needs. By working together, the CSA and the FIDO Alliance will be able to ensure that these emerging standards meet these needs."

The two groups share a number of common members, including Google, Microsoft, Nok Nok Labs, Ping Identity, RSA, SafeNet and Salesforce.com. The crossover is a testament to how closely intertwined cloud enablement, mobility and authentication have become, as well as members’ commitment to promoting standard-based solutions to both cloud and mobile authentication.

The CSA has established a Mobile Working Group that is specifically dedicated to meeting the challenges of mobile authentication and the cloud. For its part, FIDO is working on specifications to support a full range of authentication technologies like biometrics, including fingerprint and iris scanners as well as voice and face recognition. The group’s specifications are designed to work with existing communications standards and solutions like USB security tokens and smart cards.




Edited by Cassandra Tucker
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

MSPToday Contributing Editor

SHARE THIS ARTICLE
Related Articles

Shining a Light on the Dark Web: Searchlight Cyber Debuts Comprehensive Hub

By: Greg Tavarez    3/28/2024

The Dark Web Hub is a one-stop shop for crucial context and continuously updated information on dark web marketplaces, ransomware actors, hacking foru…

Read More

Stellar Cyber and Trellix Bridge the Gap in Security Operations

By: Greg Tavarez    3/28/2024

Stellar Cyber announced the integration with Trellix Endpoint Security HX to allow customers to deploy more robust security solutions and improve thei…

Read More

CyberSaint Raises $21M in Series A Funding to Continue Securing its CyberStrong Customers

By: Alex Passett    3/27/2024

CyberSaint announced that it succeeded in a huge $21 million Series A funding round. This was led by Riverside Acceleration Capital (RAC) with other i…

Read More

US Education Receives Security Upgrade with Free Browser Protection Offered by Conceal, Carahsoft

By: Greg Tavarez    3/27/2024

Conceal and Carahsoft recently unveiled an initiative to fortify the cybersecurity infrastructure of U.S. educational institutions.

Read More

Cato's AI Takes Control of Security and Incident Response

By: Greg Tavarez    3/27/2024

With Cato's recently announced Network Stories for Cato XDR, advanced AI algorithms instantly identify outages in customer networks and conduct root c…

Read More