Despite exciting progress toward more secure and usable factors, the best MFA mechanism for consumers really isn’t MFA at all — it’s passkeys. Passkeys are a FIDO authenticator with the advantage of being backed up to the cloud, so if you lose your device or buy a new one, all you must do is sign into your iCloud or Google Play account to recover your passkeys. Passkeys use public key cryptography and device biometrics, making them resistant to many known attacks, and are easy for the user.


More

Google Blog: Beyond passwords: a roadmap for enhanced user security

FIDO Security Keys are easier to use and more secure than other forms of 2FA,…

Read More →

ComputerWeekly: New stolen credentials cache puts spotlight on authentication

In this ComputerWeekly story, Steven Murdoch, chief security architect at OneSpan’s Innovation Centre says FIDO…

Read More →

ITU: Time to eliminate the password: New report on next-generation authentication for digital financial services

FIDO specifications enable users to authenticate locally to their device using biometrics in a model…

Read More →