ACSP Suggestion 2021.28: Add fido2 Authentication to ARIN Login

Suggestion

Author: Jack Nelson   
Submitted On: 27 December 2021

Description: Add fido2 authentication for secure login using security keys and smart cards.

Value to Community: This adds a great additional layer of security for all users and organizations that deploy FIDO 2 capable security keys. These security keys are generally more secure than traditional time-based OTP algorithms due to the tamper resistant nature of the device.

Timeframe: Not specified

Status: Open   Updated: 06 January 2022

Tracking Information

ARIN Comment

6 January 2022

Thank you for your suggestion, numbered 2021.28 upon receipt, requesting that ARIN offer Web Authentication (WebAuthn) and FIDO2 security key support. This suggestion appears to be a duplicate of both ACSP 2021.2: Offer Web Authentication (WebAuthn) and FIDO2 Security Key Support and ACSP 2019.14: Implement FIDO2 (WebAuthn) for ARIN Online. We agree that FIDO2 provides additional security and is rapidly gaining traction as an authentication method and would be a good addition to ARIN Online. We are currently reviewing our roadmap to determine when this work can be scheduled. These suggestions will remain open while we determine placement on our development roadmap.