According to NIST Special Publication DRAFT 800-63-B4, a phishing-resistant authenticator offers “the ability of the authentication protocol to detect and prevent disclosure of authentication secrets and valid authenticator outputs to an impostor relying party without reliance on the vigilance of the subscriber.” Two examples of phishing-resistant authenticators are PIV cards for US Federal employees and FIDO authenticators paired with W3C’s Web Authentication API for the private sector.


More

Developpez.com: A big bet to eliminate the need for passwords in the world

After a decade of thinking about eliminating passwords around the world, FIDO Alliance, believes it…

Read More →

Industry Today: FIDO Authentication Market to Surge at a Robust Pace In Terms Of Revenue Over 2031

Transparency Market Research delivers key insights on the global FIDO authentication market. In terms of…

Read More →

Wired: A Big Bet to Kill the Password for Good

After a decade of work, the FIDO Alliance says it’s found the missing piece in…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.