RE: Tech industry completes its standards for banishing passwords from Katie Haritos-Shea GMAIL on 2014-12-10 (public-cognitive-a11y-tf@w3.org from December 2014)

From: Katie Haritos-Shea GMAIL <ryladog@gmail.com>
Date: Wed, 10 Dec 2014 10:10:21 -0500
To: "'Rochford, John'" <john.rochford@umassmed.edu>, "'Steve Lee'" <steve@opendirective.com>, "'public-cognitive-a11y-tf'" <public-cognitive-a11y-tf@w3.org>
Cc: <Katie.Haritos-Shea@Chase.com>
Message-ID: <f58201d0148b$6bd2c850$437858f0$@gmail.com>

FYI….the Web Payments IG is reviewing several FIDO Alliance specs and I believe have several people from that alliance joining the W3Cs Web Payments IG to help build open standards for web payments – that we are planning to ensure are accessible.

 

 

 

* katie *

 

Katie Haritos-Shea 
Senior Accessibility SME (WCAG/Section 508/ADA/AODA)

 

Cell: 703-371-5545 |  <mailto:ryladog@gmail.com> ryladog@gmail.com | Oakton, VA |  <http://www.linkedin.com/in/katieharitosshea/> LinkedIn Profile | Office: 703-371-5545

 

From: Rochford, John [mailto:john.rochford@umassmed.edu] 
Sent: Wednesday, December 10, 2014 9:54 AM
To: Steve Lee; public-cognitive-a11y-tf
Subject: RE: Tech industry completes its standards for banishing passwords

 

Hi Steve and All,

 

I have added these standards, known as FIDO, to the issue paper on web security and privacy technologies, as an alternative technology. The following is how I described it. I am open, as always, to suggestions.

Fast IDentity Online (FIDO), password-free standards for typical and two-factor authentication.

*       FIDO relies upon user authentication based upon a user's device (e.g., phone, tablet, computer).

*       A user's device registers the user, to a server, via a public key.

*       Upon a challenge from the server, the user's device responds with a private key.

*       The device's keys are unlocked by the user biometrically (e.g., fingerprint scanner) or by a button press, not by a password.

I thank Steve for the referral.

 

John

 

John Rochford
UMass Medical School/E.K. Shriver Center
Director, INDEX Program
Instructor, Family Medicine & Community Health
 <http://www.disabilityinfo.org/> http://www.DisabilityInfo.org
Twitter: @ClearHelper

 

 

From: Steve Lee [mailto:steve@opendirective.com] 
Sent: Wednesday, December 10, 2014 3:36 AM
To: public-cognitive-a11y-tf
Subject: Tech industry completes its standards for banishing passwords

 

http://engt.co/1sbeXko

This could eliminate at leasr 2 pain points: remembering passwords and CAPTCHAs. As long as all related UIs are coga11y friendly.

Steve

Autocomplete may have messed with my text

Received on Wednesday, 10 December 2014 15:10:54 UTC