Browser support and certified products bring FIDO2 biometric authentication online
Any website can now leverage the W3C and FIDO Alliance’s FIDO2 strong authentication protocols to replace passwords with on-device biometrics and other cryptographically secure login alternatives, with browser support for FIDO2 and the first certified products now available.
Support for the standards, which were introduced in April, have been introduced by Google Chrome, Microsoft Edge, and Mozilla Firefox, and the FIDO Alliance says that support, plus the range of newly certified products available to address different use cases, gives service providers all they need to roll out FIDO Authentication for websites and applications.
“With FIDO2, the tech industry has, for the first time, established a technology standard for strong, phishing-resistant authentication on the web that promises better security and a better user experience. These announcements today of certified products and leading web browser support deliver on that promise by bringing these new capabilities to market,” said Brett McDowell, executive director of the FIDO Alliance. “Any web application — consumer or enterprise, mobile or desktop — can now be enabled to take advantage of these innovations at internet scale with the full confidence that comes from an independent certification program designed and governed by their peers.”
Organizations offering certified FIDO2 security key and biometric authenticators, clients and servers include CROSSCERT: KECA (Korea Electronic Certification Authority), Dream Security Co., ETRI, eWBM Co., IBM, Infineon Technologies, INITECH Co., Nok Nok Labs, OneSpan, Raonsecure, Samsung SDS, Singular Key, Whykeykey, Yahoo Japan Corporation, and Yubico. Certified products both ensure compliance with the specifications, and also interoperability. The FIDO Alliance also announces that Nok Nok Labs’ Universal Server is the first product certified for use by service providers to ensure compatibility and with authenticators based on all FIDO specification.
The W3C Web Authentication (WebAuthn) specification and the Client to Authenticator Protocol (CTAP) that make up FIDO2 enable users to leverage embedded biometrics, such as facial recognition, iris scans, or fingerprint swipes, or portable security keys to authenticate their identity for online services through mobile and desktop browsers.