User-Friendly Login Procedures

We are today in the digital era, where companies have two main stakes for their customers: offering simple and attractive user experiences while becoming a trustable brand.
To answer these objectives, companies need to rethink their customer journey by going further than a simple interface refresh: access factors need to be modernized and UX needs to be more comfortable, while maintaining a good level of security.

Password was and stay an important, if not “the”, recurrent frustration point for customer, and all initiative to get rid of them in the past years didn’t reach their goals…
…until now: it is time to embrace the passwordless word, using recent standards evolutions and innovative technologies.

This presentation aims at providing to business centric people and IAM managers an overview of where we came from, where we are and where we are going regarding customer authentication based on field experience:
1. Why customer authentication is a business competitive differentiator
2. What is the impact of new laws/regulation (GDPR, PSD2, NYDFS) and the rationale behind the latest NIST recommendations
3. What evolution and technologies to focus on
4. Tips&Tricks to make it happen

Discussion around UX and biometric authentication and why biometrics are gaining so much traction in the authentication space. Discussing the balancing act between Security and Convenience and how this affects UX. 
Biometrics delivering the same UX no matter the use case - (Account login, transferring funds, verifying a client, entering a building). 
Consumers more than ever need the ability to control their data - who stores what and where/how their data can be used and shared. Example of data over sharing - Buying a bottle of wine: the user hands over a government issues id, which can have not only their date of birth, full name, where they live but in some cases height, weight, and eye color. The check-out attendant only needs to know they are of legal age to purchase the wine. Their other personal information in this scenario should not need to be shared.

Key Takeaways:

- Security and UX don't need to have an adverse relationship. 
- Standardized authentication is essential to user adoption 
- Give consumers the ability to control their identity and personal information