Yubico Meets President Obama

February 17, 2015 3 minute read

Last Friday I biked to Stanford to discuss online identity protection with the President of the United States.

President Obama is a man passionate about the Internet and dedicated to helping secure it. After our short one-on-one conversation about Yubico solutions, he took the stage at the Stanford Memorial Auditorium. In front of him he had CEOs and CISOs from the leading companies in the financial and tech industries, who were also invited as speakers during the day-long White House Cybersecurity Summit.

In an afternoon session with a group of tech CISOs, the highlight was FIDO and second-factor authentication, and implementations that work today to secure online identities. And when one of the CISOs held up a small USB-key in his hand someone from the audience called out; “That’s a YubiKey!”

In a panel entitled “Authentication Beyond Passwords”, I was one of three speakers advocating for open standards, including representatives from FIDO and NSTIC (National Strategy for Trusted Identities in Cyberspace). We agreed that the world does not need to wait; there are real-world deployments for open, secure, easy-to-use, affordable, and high-privacy online identity protection.

It was a beautiful, warm and sunny afternoon when I headed back home to Palo Alto; a 15 minute bike ride from the Stanford campus. I chose to live here for the same reasons the White House chose to host the event here; to work closely with the Internet thought leaders to solve real problems that cannot be solved alone by governments or tech giants.

While such cooperation is needed to achieve identity protections, Yubico is not blind to the current debate around government surveillance and the very public boycott of Obama’s Summit by some tech giants.

Since the NSA breach, leading tech companies are building encryption into their products that they themselves cannot break into. This effort eliminates the ability to disclose customer information even if ordered by a court. Both the British and the U.S. government have tried to stop this. The New York Times summarizes the issue well.

At Yubico, we are committed to help Internet citizens take control over their online identities. We believe that your secure online identity should not be owned or controlled by tech giants, governments, banks – or by Yubico. We believe in an open and secure Internet where users can have multiple identities, even anonymous, and hide information if they need to and want to, a topic I highlighted in my previous blog on global dissidents using YubiKeys: https://www.yubico.com/2014/11/fido-u2f-designed-protect-privacy/

See Obama’s opening remarks from the Summit (video):
https://obamawhitehouse.archives.gov/issues/foreign-policy/cybersecurity/summit

Share this article:

Recommended content

Thumbnail

Zero Trust is the new regulatory minimum for Federal agencies: what does that mean for authentication?

The deadline is looming for federal agencies to implement impersonation-resistant multi-factor authentication (MFA), just one of the new stronger security requirements under President Biden’s new cybersecurity executive order (EO 14028). The EO puts security front and center to address some of the worst cyber attacks against the federal government, setting up new federal compliance expectations ...

Thumbnail

Everything you need to know about the revised eIDAS regulation

In June 2021, the EU Commission announced its plans for a revised eIDAS regulation. eIDAS (electronic IDentification, Authentication and trust Services) is the EU regulation 910/2014 on electronic identification and trust services in the EU. It came into force in 2014, so the revision is a major update to eIDAS. The past two years the ...

Thumbnail

Seven tips if you’re still scratching your head after reading Biden’s cybersecurity executive order

Yubico works with a lot of federal agencies and contractors, as well as with customers in regulated industries, so we understand the challenges new compliance regulations can bring. The executive order that was released May 12 can be seen as the federal government fully embracing the move toward multi-factor authentication (MFA) for use cases where ...

Thumbnail

Entrust to add support for YubiKeys with PIV alternative and PIV derived credentials, advancing secure mobile and desktop authentication

Today marks an important day for expanding Yubico’s reach to support the growing requirement for Government agencies to issue government credentials beyond Personal Identity Verification (PIV) cards. We are celebrating that our partner Entrust will soon launch support for derived PIV credentials for YubiKeys. Customers will be able to take advantage of YubiKeys with derived ...