FIDO Authentication has grown from concept to global web standard supported in leading browsers and platforms in just seven years. While FIDO has become a cornerstone of web security, account enrollment and account recovery processes are leaving gaps in the credential management lifecycle that allow bad actors to perform account takeover and get into our networks. For accounts protected from phishing and other credential-based attacks with FIDO Authentication, the account recovery process when a FIDO device is lost or stolen becomes critical to maintaining the integrity of the user’s account.
