South Korea has eliminated a significant barrier to the usage of the FIDO protocol for passwordless authentication by confirming that it falls outside the scope of a requirement for user consent to process biometrics.

Members of the FIDO Alliance Korea Working Group (FKWG) submitted an official inquiry to the Korea Personal Information Protection Commission (KPIPC), which has responded by stating that the consent rules do not apply to biometric processes performed entirely on user-controlled devices. Since biometric data is not collected, stored or processed by the organization requesting FIDO authentication, the process does not qualify as processing personal information under the Personal Information Protection Act.


More

The Verge: When can we finally get rid of passwords?

The Verge reports that passwords, and all the risks that come with them, could be…

Read More →

ZDNet: Google transforms Android phones into security keys

At the Google Cloud Next conference, Google showcased the next step it’s taking to get…

Read More →

Venture Beat: You can now use your Android phone as a 2FA security key for Google accounts

Venture Beat reports on Google’s announcement that phones running Android 7.0 Nougat and higher can…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.