FIDO2 support is growing rapidly in the ecosystem, setting the stage for a future that is far less dependent on passwords. Since FIDO2 was introduced last April, we’ve seen a rapid succession of supporting browser announcements including Google Chrome, Microsoft Edge and Mozilla Firefox. More recently, Microsoft announced FIDO2-based Microsoft Account sign-in using Windows Hello or a FIDO Security Key — no passwords needed. And then, just last week, the news broke that Apple has shipped FIDO2 support in their latest technology preview version of their Safari web browser.
With this comprehensive FIDO2 browser support now in place, websites need to build corresponding support into their authentication infrastructure. This will allow websites to process FIDO messages that the web browser will pass between the user’s device and the website’s server. To support the adherence to the standard, FIDO ensures compliance and interoperability with the specifications through its FIDO Certified Program.
While browser vendors were busy building FIDO2 support into their releases, leading industry tech vendors were equally busy building the products to support implementation. The FIDO2 certification program was launched in September to ensure interoperability and to support these vendors. The result was a variety of servers, clients and authentication devices that quickly achieved FIDO2 Certifications.
Today, that list grows longer as we announce the most recently certified products from leading vendors including: Aerendir Mobile Inc., Capy Japan Inc., DreamSecurity Co., Ltd., Hancom Secure, Hyper Blockchain System Co., Ltd., Irisys Co. Ltd., NXP Semiconductors, Octatco, Penta Security Systems Inc., SSenStone Inc., Uni-ID Libra, and Vancosys Data Security. Going through certification verifies that products comply with FIDO2 and meet certain security profiles.
Also certified were leading service providers including network operators KDDI of Japan and SK Telecom of Korea. In a similar vein, social media giant LINE became the second company to achieve Universal Server Certification, which ensures service providers have compatibility with authenticators based on all FIDO specifications (FIDO UAF, FIDO U2F and FIDO2).
This is just a start and we expect 2019 to be a year of further FIDO adoption and deployments. If you’re interested in getting started with FIDO Authentication, check out our new knowledge base for detailed information on business case, implementation guidance and more.