FB pixel

VinCSS launches FIDO2 biometric password manager as Alliance issues security key guidance

VinCSS launches FIDO2 biometric password manager as Alliance issues security key guidance
 

VinCSS has launched a FIDO2 platform for passwordless password management with biometrics, which the company claims is the first of its kind on the market.

The VinCSS FIDO2 KeyVault uses an HMAC Secret Extension to eliminate the master password from day-to-day uses, according to the announcement, limiting master password exposure.

The company notes common user complaints about the poor experience associated with passwords, as well as security shortcomings, and goes on to review the series of hacks and breaches involving traditional password management solutions.

First time users or those adding a new vault with the solution name their vault, select a FIDO2 key, such as a VinCSS FIDO2 Authenticator or another biometric hardware or software key. A private instance method is used for key derivation, and the root secret is stored in memory only during the moment when the vault is opened, the company says.

VinCSS launched its FIDO2 cloud service in early-2021.

Guidance for security keys

The FIDO Alliance, meanwhile, has published new guidance for optimizing user experiences with FIDO security keys.

The FIDO Security Key UX Guidelines are intended to help accelerate the adoption of FIDO security keys for multifactor authentication (MFA). They were formed through a collaboration between The FIDO Alliance UX Task Force and Blink UX.

“Having reached widespread support for FIDO Authentication across the web, the FIDO Alliance is increasingly focused on ways to grow and ultimately reach mass adoption. One of our primary areas of focus towards this objective is making FIDO more usable and accessible,” says Andrew Shikiar, executive director and CMO of the FIDO Alliance. “We’ve established a FIDO UX Task Force consisting of UX experts from around the globe to conduct research and provide guidance on how to optimize user journeys as users enroll in, and subsequently sign in, with FIDO in various use cases. Today’s guidelines follow our first set of UX guidelines focused on the desktop authenticator user experience, with more to follow. I strongly encourage service providers to leverage these best practices when rolling out FIDO Authentication.”

Article Topics

 |   |   |   |   |   |   |   | 

Latest Biometrics News

 

Global ID patents protocols for biometric device as identity credential

Finger vein recognition has drawn increasing attention from the biometrics community in recent years, with more patents being granted and…

 

Vida introduces biometric identity stack to fight fraud in Indonesia

As digital transformation accelerates globally, the threat of cybercrime continues to grow, driving demand in underserved countries. In Indonesia, homegrown…

 

EU gathers feedback on EUDI Wallet certification, implementation

As the European Union approaches the launch of its digital identity project, feedback on the certification of the conformity of…

 

ACI pushes back on Philippine national ID card contract cancelation

The Philippine government’s national ID system has come under scrutiny, as the Bangko Sentral ng Pilipinas (BSP) faces criticism for…

 

Brazilian digital ID firm Unico acquires Oz Forensics and Trully.AI

Brazilian digital identity unicorn Unico has announced more acquisitions. The selfie biometrics provider, backed by the likes of Goldman Sachs,…

 

Pakistan ID agency chair out after court rules appointment violates constitution

A legal standoff appears to be brewing between Pakistan’s military government and judiciary, after the Lahore High Court ordered the…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Read This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events