South Korea has eliminated a significant barrier to the usage of the FIDO protocol for passwordless authentication by confirming that it falls outside the scope of a requirement for user consent to process biometrics.

Members of the FIDO Alliance Korea Working Group (FKWG) submitted an official inquiry to the Korea Personal Information Protection Commission (KPIPC), which has responded by stating that the consent rules do not apply to biometric processes performed entirely on user-controlled devices. Since biometric data is not collected, stored or processed by the organization requesting FIDO authentication, the process does not qualify as processing personal information under the Personal Information Protection Act.


More

The Next Web: Passwordless web gets a boost from Windows Hello FIDO2 certification

The Next Web reports that Windows Hello, Microsoft’s passwordless authentication method that allows Windows 10…

Read More →

The Verge: When can we finally get rid of passwords?

The Verge reports that passwords, and all the risks that come with them, could be…

Read More →

ZDNet: Google transforms Android phones into security keys

At the Google Cloud Next conference, Google showcased the next step it’s taking to get…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.