Our patent pending technology provides mobile users the ability to utilize Public Key Infrastructure (PKI) Certificates for authentication to relying parties utilizing the FIDO Universal Authentication Framework (UAF) protocol.
The technology effectively bridges the need for strong identity verification in the PKI world and the mobile friendly privacy enhancing world of FIDO authentication, delivering the benefits of both:
Use of strong verified proof of vetted credentials for authentication
Utilizing the latest public key cryptology
Enhanced user privacy
Cost effective approach to integrate PKI credentials for mobile authentication to online services
Frictionless, passwordless user experience
Built using open standards to enable rapid integration with PKI and FIDO services.
The QX.509 Authenticator is the by-product of the “Mobile Authentication Interoperability for Digital Certificates” (X.509) project sponsored by the U.S. Department of Homeland Security Science & Technology Directorate. It addresses the challenge of securely and authoritatively authenticating users on mobile devices.
The objective of the project was focused on using a strongly vetted x.509 certificate on mobile devices for enterprise server authentication via the FIDO protocols.
Now, with the QX.509 Authenticator, an x.509 Digital Certificate compliant with DPC specifications, can be used with no further development work on the part of the Credential issuer, with any existing FIDO compliant relying parties for authentication.
In simplest terms, it provides the identity assurance of the PIV world and strong token assurance delivered through FIDO protocols, while meeting government standards:
FIPS 140-2 (cryptographic modules) - Certified Keystore
NIST 800-63-3 (Digital identity) - AAL3, SFA
NIST 800-157 (PIV Guidelines)
NIST 800-57 (Key management)