Microsoft Exec on Why FIDO Authentication Beats CertificatesMicrosoft's Libby Brown on How FIDO Passwordless Authentication Cuts Complications
Moving from certificate-based to FIDO authentication dramatically reduces overhead and complications for large enterprises looking to move away from using passwords, says Microsoft's Libby Brown.
See Also: A Guide to Passwordless Anywhere
FIDO allows organizations to adopt strong passwordless authentication by simply buying a FIDO key and turning it on in their Azure Active Directory, says Brown, senior product manager for identity at Microsoft. This means they can eschew the complicated setup associated with trusted root certificates. FIDO uses public key infrastructure, meaning that users can create and store their credentials securely without having a centralized place to store them, she says (see: How FIDO2 Can Streamline Passwordless Tech, Account Recovery).
"It's something that any user can have some instructions and set it up," Brown says. "Any organization can help their users set it up. It is so much more simple."
In this video interview with Information Security Media Group from the FIDO Alliance's Authenticate 2022 conference, Brown also discusses:
- The biggest passwordless challenges at large enterprises;
- Best practices for implementing identity verification;
- Balancing phishing resistance and ease of use for small to midsized businesses.
Brown is responsible for driving Microsoft's Azure Active Directory features and scenarios and championing passwordless technologies. She also has product, program and/or release manager roles within Microsoft Learning, Office Live Small Business, Office 365, Azure Commerce Platform and Universal Store. Outside of work, you can find Brown answering product questions on Twitter as @TruBluDevil.