FB pixel

Security hardware keys evolve for new passwordless authentication options

Feitan and Yubico announce innovations in FIDO key-as-a-service, new firmware
Categories Access Control  |  Biometrics News
Security hardware keys evolve for new passwordless authentication options
 

San Jose-headquartered Feitian Technologies has launched its FKaaS (Feitian Key as a Service) product, a passwordless authentication tool aimed at large and mid-sized enterprises seeking protection against phishing and credential-based authentication attacks.

Feitian provides FIDO authentication in key and smart card form, supporting Windows laptops, MacBooks, iOS and Android mobile devices. It also provides higher-grade security options for government and highly regulated industries. According to a press release, the new FKaaS service allows U.S.-based enterprises in need of more than 500 hardware keys to acquire FIDO Feitian keys with pre-integrated support for passwordless authentication via a three-year subscription.

Vice President and General Manager of Feitian Technologies US Tibi Zhang says “FKaaS with auto-deployment simplifies the process for enterprises to acquire and deploy FIDO security keys for their workforce. For enterprises that are seeking to outfit their workforce with multifactor authentication, FKaaS can acquire a competitively priced product offering by leveraging their operational (OpEx) budgets.”

Keys ship to the U.S. for free, excepting additional logistics fees. FKaaS subscribers get priority technical support, including fast replacement of damaged or lost keys based on a defined percentage. For organizations who want minimal complexity and hassle in implementation, the company offers optional automated pre-deployment capabilities that allow enterprises to assign individual pre-configured FIDO keys to each defined user – especially useful for larger workforces. Pre-deployment is available in a premium package with subscription.

Yubico updates add security, more storage for credentials

Yubico’s hardware authentication security keys are getting a firmware upgrade. A press release says significant updates within YubiKey 5.7 firmware include enhanced security features such as improved PIN complexity, enterprise attestation, FIDO2 enhancements and expanded passkey credentials storage. To comply with incoming NIST requirements, FIDO2, PIV, and OpenPGP, Iit blocks simple patterns and common PINs at the hardware level.

Per the release, “YubiKey 5.7 implements FIDO Client-to-Authenticator Protocol (CTAP) 2.1, embracing the latest FIDO2 protocol features such as Force PIN Change and Minimum PIN Length.”

The update targets enterprises in need of phishing-resistant passwordless authentication at scale. “Organizations are continuing to face a surge in the variety and complexity of cyber threats at historical rates, often fueled by compromised employee login credentials, frequently resulting from attacks such as phishing,” says Jeff Wallace, senior vice president of product at Yubico. “These updates empower enterprises with the latest authentication advancements and tools to build specific strategies for creating phishing-resistant users and mitigating phishing threats for employees, external identities, and customers.”

In tandem with the YubiKey 5.7 update, Yubico Authenticator 7 is also getting updates, enabling the use of new public key algorithms for PIV, and adding localization with official support for French and Japanese. The app is now available for all major desktop platforms, as well as Android mobile OS. Updates for iOS are on the way.

Security keys with firmware 5.7 will be available to purchase in late May 2024.

Related Posts

Article Topics

 |   |   |   |   |   |   | 

Latest Biometrics News

 

Ireland will get mDLs in 2025

There’s a wee delay on mobile driver’s licenses (mDL) in Ireland, but the government is on track for a rollout…

 

Google can depose Texas in biometric data privacy lawsuit after partial appeals win

Google will be allowed to depose Texas as it defends itself in a lawsuit brought by the state, but not…

 

Can digital identity wallets fix the identity theft and AI deepfake fraud problem?

As AI becomes a staple of the fraudster’s toolkit, driving an uptick in identity theft and deepfake fraud, some are…

 

Link EU digital ID wallet to social media accounts to end anonymity: Spanish PM

Social media accounts held in the European Union should be linked to EU Digital Identity Wallets to prevent anonymity, Spanish…

 

Dominican Republic awards contract for 5M biometric passports

The Dominican Republic is set to begin issuing biometric passports in August, president Luis Abinader has announced.  The tender for…

 

Digital transformation of healthcare gathers pace globally

The UAE and Estonia could see cooperation in the digital transformation of healthcare. Riina Sikkut, Estonia’s minister of health, said…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Viewed This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events