FB pixel

Microsoft introduces biometric protection to Web browser

Categories Access Control  |  Biometrics News
 

Microsoft has announced that its latest generation of Web browser will natively support its new biometric authentication standard.

In a blog post published earlier this week, Microsoft said that its new Edge browser, which is the default browser available with Windows 10 operating system, will support Windows Hello.

Windows Hello is described as a more personal way to sign in Windows 10 devices with just a look or a touch. Microsoft claims to enable enterprise-grade security through the process, without having users type-in a password.

Windows 10 incorporates multi-factor authentication technology based upon standards developed by the FIDO Alliance. The operating system includes improved support for biometric authentication through Windows Hello software and devices with supported cameras which allow users to login with face- or iris-recognition.

Devices with supported readers support fingerprint-recognition login. Credentials are stored locally and protected using asymmetric encryption.

The blog notes that Microsoft looks “forward to a Web where the user doesn’t need to remember a password, and the server doesn’t need to store a password in order to authenticate that user. Windows Hello, combined with Web Authentication, enables this vision with biometrics and asymmetric cryptography. In order to authenticate a user, the server sends down a plain text challenge to the browser. Once [we are] able to verify the user through Windows Hello, the system will sign the challenge with a private key previously provisioned for this user and send the signature back to the server. If the server can validate the signature using the public key it has for that user and verify the challenge is correct, it can authenticate the user securely.”

Microsoft notes that the new private keys issued under Windows Hello are stronger credentials because the Windows Hello platform prevents password guessing, phishing, and keylogging, and it is resilient to server database attacks.

Article Topics

 |   |   |   |   |   |   |   | 

Latest Biometrics News

 

Biometrics investors pursue scale, sustainability balance

Budgets for biometrics and government digital ID programs made up the main theme of the most-read news items on Biometric…

 

New FaceTec CLO among avalanche of appointments in biometrics and fraud protection

New executives have been named by biometrics providers FaceTec, Pindrop and Fingerprint Cards, along with C-level appointments by Prove and…

 

Indonesia issues call for World Bank-backed digital identification project

Indonesia is looking for a company providing consulting services as a part of its upcoming digital transformation project backed by…

 

Affinidi data sharing framework leverages privacy-preserving open standards

Affinidi, a company specializing in data and identity management, unveiled the Affinidi Iota framework at the WeAreDevelopers World Congress. This…

 

Sri Lanka set for January biometric passport launch, plans airport upgrades

Sri Lanka is preparing to begin issuing biometric passports with electronic chips embedded as of January, 2025, according to a…

 

Vending machines with biometric age verification roll out in Germany, US

Vending machines are growing in popularity as a way to sell age-restricted products around the world, with Diebold Nixdorf algorithms…

Comments

15 Replies to “Microsoft introduces biometric protection to Web browser”

  1. Great news about biometric authentication on web from Microsoft with their new web browser edge. I hope this biometric web authentication will not discriminate against some biometric devices but will instead have an API that cuts across all biometric devices that can be used on web.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Read This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events