[ARIN-Suggestions] Response to 2021.28: Add fido2 Authentication to ARIN Login

[ARIN]

On 6 January, we issued our response to ACSP 2021.28, which was received on 27 December 2021:

Thank you for your suggestion, numbered 2021.28 upon receipt, requesting that ARIN offer Web Authentication (WebAuthn) and FIDO2 security key support. This suggestion appears to be a duplicate of both ACSP 2021.2: Offer Web Authentication (WebAuthn) and FIDO2 Security Key Support and ACSP 2019.14: Implement FIDO2 (WebAuthn) for ARIN Online.  We agree that FIDO2 provides additional security and is rapidly gaining traction as an authentication method and would be a good addition to ARIN Online. We are currently reviewing our roadmap to determine when this work can be scheduled. These suggestions will remain open while we determine placement on our development roadmap.

The full text of the suggestion is available below and at:

https://www.arin.net/participate/community/acsp/suggestions/2021/2021-28/

Description:

Add fido2 authentication for secure login using security keys and smart cards.

Value to Community:

This adds a great additional layer of security for all users and organizations that deploy FIDO 2 capable security keys. These security keys are generally more secure than traditional time-based OTP algorithms due to the tamper resistant nature of the device.

Timeframe: Not specified

Regards,

American Registry for Internet Numbers (ARIN)