{"id":60467,"date":"2023-11-13T02:15:06","date_gmt":"2023-11-13T07:15:06","guid":{"rendered":"https:\/\/fidodev.wpengine.com\/?page_id=60467"},"modified":"2026-02-17T15:19:13","modified_gmt":"2026-02-17T20:19:13","slug":"specifications-overview","status":"publish","type":"page","link":"https:\/\/fidoalliance.org\/specifications-overview\/","title":{"rendered":"Specifications"},"content":{"rendered":"\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-28f84493 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\">\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-e0e4babd wp-block-columns-is-layout-flex\" style=\"padding-right:0;padding-left:0\">\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:100%\">\n<p>Specification development is a core element of FIDO Alliance\u2019s mission to reduce the world\u2019s reliance on passwords.&nbsp; Through its technical working groups, the<a href=\"https:\/\/fidoalliance.org\/\"> FIDO Alliance<\/a> publishes specifications in two areas: user authentication and secure device onboarding.&nbsp; FIDO Alliance also submits mature technical specification(s) to recognized standards development organization(s) for formal standardization.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>User Authentication Specifications<\/strong><\/h2>\n\n\n\n<p>The FIDO Alliance has published three sets of specifications for simpler, stronger user authentication: FIDO Universal Second Factor (<a href=\"https:\/\/fidoalliance.org\/specs\/u2f-specs-master\/fido-u2f-overview.html\">FIDO U2F<\/a>), FIDO Universal Authentication Framework (FIDO UAF) and the Client to Authenticator Protocols (CTAP).<a href=\"https:\/\/fidoalliance.org\/specs\/fido-v2.1-ps-20210615\/fido-client-to-authenticator-protocol-v2.1-ps-errata-20220621.html\"> CTAP<\/a> is complementary to the <a href=\"https:\/\/www.w3.org\/TR\/webauthn-1\/\" target=\"_blank\" rel=\"noopener\">W3C\u2019s Web Authentication (WebAuthn) specification<\/a>; together, they are known as FIDO2.<br><\/p>\n\n\n\n<p>FIDO standards use standard public key cryptography techniques to provide phishing-resistant authentication with cryptographic key pairs called <a href=\"https:\/\/fidoalliance.org\/passkeys\/\">passkeys<\/a>. FIDO authentication is designed from the ground up to protect user privacy and prevent phishing. Every passkey is unique and bound to the online service domain. The protocols do not provide information that can be used by different online services to collaborate and track a user across the services. Biometric information, if used, never leaves the user\u2019s device.<br><br>Read the technical specifications on the <a href=\"https:\/\/fidoalliance.org\/specifications\/download\/\">FIDO authentication specifications download<\/a> page.<\/p>\n\n\n\n<div class=\"wp-block-buttons is-content-justification-center is-layout-flex wp-container-core-buttons-is-layout-a89b3969 wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/fidoalliance.org\/specifications\/download\/\" target=\"_blank\" rel=\"noreferrer noopener\">Download User Authentication Specs<\/a><\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-buttons is-content-justification-center is-layout-flex wp-container-core-buttons-is-layout-a89b3969 wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/fidoalliance.org\/specifications\/\" target=\"_blank\" rel=\"noreferrer noopener\">FIDO User Authentication Specifications<\/a><\/div>\n<\/div>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Device Onboarding Specification<\/strong>s<\/h2>\n\n\n\n<p>The FIDO Alliance\u2019s FIDO Device Onboard specification is an automatic onboarding protocol for edge nodes and IoT devices.&nbsp; The<a href=\"https:\/\/fidoalliance.org\/device-onboarding-overview\/\"> FDO<\/a> protocol is a freely available standard that champions a \u2018zero trust\u2019 approach to enable devices to quickly and securely onboard to cloud and edge management platforms.&nbsp;<\/p>\n\n\n\n<p>Device onboarding is the process of installing secrets and configuration data into a device so that the device is able to connect and interact securely to cloud and edge management platforms. The platform is used by the device owner to manage the device by: patching security vulnerabilities; installing or updating software; retrieving sensor data; interacting with actuators; etc. FDO is an automatic onboarding mechanism, meaning that it is invoked autonomously and performs only limited, specific interactions with its environment to complete. FDO permits late binding of device credentials so that one manufactured device may be onboarded, without modification, to many different platforms.<\/p>\n\n\n\n<div class=\"wp-block-buttons is-content-justification-center is-layout-flex wp-container-core-buttons-is-layout-a89b3969 wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/fidoalliance.org\/specifications\/download-iot-specifications\/\" target=\"_blank\" rel=\"noreferrer noopener\">Download FDO Specs<\/a><\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-buttons is-content-justification-center is-layout-flex wp-container-core-buttons-is-layout-a89b3969 wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/fidoalliance.org\/device-onboarding-overview\/\" target=\"_blank\" rel=\"noreferrer noopener\">Device Onboarding <\/a><\/div>\n<\/div>\n\n\n\n<h2 class=\"wp-block-heading\">Credential Exchange Specifications<\/h2>\n\n\n\n<p>FIDO Alliance\u2019s credential exchange specifications define a standard format for transferring all types of credentials in a credential manager including passwords, passkeys and more in a manner that is secure by default.<\/p>\n\n\n\n<p><strong>Credential Exchange Format<\/strong> (Working Draft)<\/p>\n\n\n\n<p>This document defines the data structures and format of credentials being securely passed or referenced between two applications during credential exchange. It is used in conjunction with the Credential Exchange Protocol.<\/p>\n\n\n\n<p><a href=\"https:\/\/fidoalliance.org\/specs\/cx\/cxf-v1.0-wd-20241003.html\">HTML<\/a><\/p>\n\n\n\n<p><strong>Credential Exchange Protocol<\/strong> (Working Draft)<\/p>\n\n\n\n<p>This document defines a protocol to securely move one or more credentials between two credentials providing applications on the same or separate devices. It is used in conjunction with the Credential Exchange Format.<\/p>\n\n\n\n<p><a href=\"https:\/\/fidoalliance.org\/specs\/cx\/cxp-v1.0-wd-20241003.html\">HTML<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Specification development is a core element of FIDO Alliance\u2019s mission to reduce the world\u2019s reliance on passwords.&nbsp; Through its technical working groups, the FIDO Alliance publishes specifications in two areas: [&hellip;]<\/p>\n","protected":false},"author":59250,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"inline_featured_image":false,"_EventAllDay":false,"_EventTimezone":"","_EventStartDate":"","_EventEndDate":"","_EventStartDateUTC":"","_EventEndDateUTC":"","_EventShowMap":false,"_EventShowMapLink":false,"_EventURL":"","_EventCost":"","_EventCostDescription":"","_EventCurrencySymbol":"","_EventCurrencyCode":"","_EventCurrencyPosition":"","_EventDateTimeSeparator":"","_EventTimeRangeSeparator":"","_EventOrganizerID":[],"_EventVenueID":[],"_OrganizerEmail":"","_OrganizerPhone":"","_OrganizerWebsite":"","_VenueAddress":"","_VenueCity":"","_VenueCountry":"","_VenueProvince":"","_VenueState":"","_VenueZip":"","_VenuePhone":"","_VenueURL":"","_VenueStateProvince":"","_VenueLat":"","_VenueLng":"","_VenueShowMap":false,"_VenueShowMapLink":false,"footnotes":""},"content-type":[],"class_list":["post-60467","page","type-page","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/fidoalliance.org\/wp-json\/wp\/v2\/pages\/60467","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/fidoalliance.org\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/fidoalliance.org\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/fidoalliance.org\/wp-json\/wp\/v2\/users\/59250"}],"replies":[{"embeddable":true,"href":"https:\/\/fidoalliance.org\/wp-json\/wp\/v2\/comments?post=60467"}],"version-history":[{"count":0,"href":"https:\/\/fidoalliance.org\/wp-json\/wp\/v2\/pages\/60467\/revisions"}],"wp:attachment":[{"href":"https:\/\/fidoalliance.org\/wp-json\/wp\/v2\/media?parent=60467"}],"wp:term":[{"taxonomy":"content-type","embeddable":true,"href":"https:\/\/fidoalliance.org\/wp-json\/wp\/v2\/content-type?post=60467"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}