Introduction to FIDO and eIDAS Services

6. © FIDO Alliance ©2020 The Credential Theft Cycle Persists 6 Credential loss grew by 284% in 2019 Criminals purchase credentials, use botnets to prep attacks Up to 2% of stuffing attempts are successful Credentials cost $0.70 - $2.30 80-90% of login attempts to e-commerce sties are spoofs 15.1 billion exposed records in 2019 Data Breach leads to credentials for sale on Dark Web Credential stuffing attacks on e-commerce, enterprise, etc 7,098 data breaches last year Server-side Authentication Credentials Annual cost to US Businesses: $5 billion Sources: ITRC, Verizon, Shape Security, Akamai

7. © FIDO Alliance ©20207 Security Usability Poor Easy WeakStrong = Single Gesture Possession-based Authentication Open standards for simpler, stronger authentication using asymmetric public key cryptography

8. © FIDO Alliance ©20208 FIDO Breaks the Credential Theft Cycle & Prevents Account Takeovers Use of Public Key Cryptography eliminates dependence on server-side credentials Nothing of value for hackers to steal (public keys have no utility) Stuffed credentials won’t work Stops supply & demand for hackers

24. © FIDO Alliance ©2020 If we didn’t have time to answer your question, please reach out to us at help@fidoalliance.org The webinar recording and slides will be emailed to you and posted on fidoalliance.org Please stay on to take the survey at the conclusion of the webinar 24