Analysis and implementation of the FIDO protocol in a trusted environment
KeywordsΑσφάλεια δικτύων και συστημάτων ; Αυθεντικοποίηση ; FIDO (Fast IDentity Online) ; Trusted Execution Environments (TEE)
The increasing use of online accounts has created the need for access control and security. Different authentication techniques have been proposed over the years but the passwords have failed to be replaced yet. FIDO protocol proposes a new authentication scheme that guarantees both security and usability. Nevertheless, for every protocol to be secure, trusted hardware is also needed for the storage of private keys. Therefore, this thesis explores both FIDO and TEE and proposes a way to combine them both to a proven secure scheme.