FB pixel

Google announces biometric authentication services on Android with FIDO2

 

Google has rolled out biometric authentication for some services on Android devices leveraging FIDO2 standards, FIDO CTAP, and WebAuthn, according to a company blog post. A spokesperson for the company told VentureBeat that FIDO2 password-free logins will be implemented with more Google services over time.

The capability is available now on Pixel phones, and will reach all devices using Android 7 or later in the next few days. Android 7.0 and later have been FIDO2-certified out of the box since the FIDO Alliance granted the OS certification in February.

When users visit compatible services like passwords.google.com, a WebAuthn “get” call through Chrome to enable the use of a fingerprint or screen lock pattern for identity verification. Of course, FIDO protocols also allow for multifactor authentication without biometrics.

“Both security keys and local user verification based on biometrics use the FIDO2 standards. However, these two protections address different use cases,” Google explains. “Security keys are used for bootstrapping a new device as a second factor as part of 2SV in order to make sure it’s the right owner of the account accessing it. Local user verification based on biometrics comes after bootstrapping a device and can be used for re-authentication during step-up flows to verify the identity of the already signed-in user.”

The blog post emphasizes that under FIDO architecture, biometric data is not transmitted to or stored by Google servers. The company also provides a link to a presentation at Identiverse last year that outlines some future use cases the company has worked on.

Article Topics

 |   |   |   | 

Latest Biometrics News

 

Biometrics connecting ID and payments through digital wallets, apps and passkeys

Biometrics are connecting with payment credentials, whether through numberless credit cards and banking apps or passkeys, as the concrete steps…

 

Reach of Musk, DOGE’s federal data access sets off privacy, security alarms

Led by tech billionaire Elon Musk and a shadowy team believed to be under his control, the United States DOGE…

 

Mobile driver’s licenses on the cusp of ‘major paradigm shift’

More entities have integrated the California mobile driver’s license (mDL) credential for identity verification. Although just 15 states have introduced…

 

Gesture-based age estimation tool BorderAge joins Australia age assurance trial

Australia’s age assurance technology trial is testing the new biometric tool that performs age estimation based on hand gestures. The…

 

European AI compliance project CERTAIN launches

The pan-European project to create AI compliance tools CERTAIN has kicked off its work, with the goal of making European…

 

Signaturit Group acquiring Validated ID for undisclosed sum

Spain-based digital identity and electronic signature provider Validated ID is being acquired by Signaturit Group, a European company offering identity…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Viewed This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events