Microsoft Achieves FIDO2 Certification for Windows Hello
Brings secure passwordless authentication to over 800 million active Windows 10 devices
MOUNTAIN VIEW, CALIF., May 6, 2019 — FIDO Alliance announced today that Microsoft has achieved FIDO2 certification for Windows Hello. With this news, any compatible device running Windows 10 is now FIDO2 Certified out-of-the-box following the Windows 10 May 2019 update. Windows 10 users can now move beyond centrally-stored passwords and leverage Windows Hello biometrics or PINs to access their devices, apps, online services and networks with FIDO Certified security.
FIDO21 is a set of standards that enables easy and secure logins to websites and applications via biometrics, mobile devices and/or FIDO Security Keys. FIDO2’s simpler login experiences are backed by strong cryptographic security that is far superior to passwords, protecting users from phishing, all forms of password theft and replay attacks. Learn more about FIDO2 at https://fidoalliance.org/fido2/.
“Our work with FIDO Alliance, W3C and contributions to FIDO2 standards have been a critical piece of Microsoft’s commitment to a world without passwords. Windows Hello was built to align with FIDO2 standards so it works with Microsoft cloud services and within heterogeneous environments. Today’s certification announcement brings this full circle, allowing organizations and websites to extend certified FIDO Authentication to over 800 million active Windows 10 devices,” — Yogesh Mehta, Principal Group Program Manager, Microsoft Corporation
Microsoft, a leader in the charge towards a passwordless future, has made FIDO Authentication a fundamental component in its efforts to provide users a seamless, password-free login experience. As a FIDO Alliance board member and a lead contributor to the development of the FIDO2 specifications, Microsoft produced one of the market’s first FIDO2 rollouts with Windows Hello, supports FIDO2 on its Microsoft Edge browser, and also supports log in to Windows Account with FIDO Security Keys.
The Windows 10 May 2019 update includes support for passwordless FIDO Authentication via Windows Hello or FIDO Security Key on Microsoft Edge or the most recent versions of Mozilla Firefox. Read Microsoft’s blog post for more information.
“As a board member and vital contributor to the development of FIDO2, Microsoft has been a preeminent advocate of FIDO Alliance’s mission to move the world beyond passwords. This certification builds upon Microsoft’s long-standing support for FIDO2 technologies in Windows 10 and opens the door for its customers and partners throughout the Windows ecosystem to benefit from FIDO’s approach to user authentication,” said Andrew Shikiar, Chief Marketing Officer of the FIDO Alliance. “FIDO2 is now supported in the world’s most-used operating systems and web browsers, setting the stage for enterprises, service providers and app developers to rapidly bring a simpler and stronger authentication experience to billions of users worldwide.”
In addition to Microsoft Edge, FIDO2 is also supported by leading web browsers Google Chrome and Mozilla Firefox (with preview support by Apple Safari). Android has also been FIDO2 Certified, allowing mobile apps and websites to leverage FIDO standards on over a billion devices supporting Android 7.0+. In addition, several FIDO2 Certified products have been announced to support implementation.
Manufacturers interested in taking advantage of out-of-the-box certification and displaying the FIDO Certified logo on their Windows 10 devices should consult FIDO Alliance’s new trademark and service mark usage agreement.
About FIDO Certification
The FIDO Alliance certifies authentication devices like biometrics and/or security keys, clients and servers to verify that they comply with FIDO specifications including FIDO2 and meet certain security profiles. This ensures that web users can use their FIDO Certified device across all FIDO-enabled web services for a seamless experience. For websites and organizations, they need only to FIDO-enable once and gain access to all FIDO Certified devices in the market.
OEM’s can further differentiate their devices to meet added market requirements by taking part in security level testing — which evaluates how strongly the user’s authentication credentials are protected.
About the FIDO Alliance
The FIDO (Fast IDentity Online) Alliance, fidoalliance.org was formed in July 2012 to address the lack of interoperability among strong authentication technologies, and remedy the problems users face with creating and remembering multiple usernames and passwords. The FIDO Alliance is changing the nature of authentication with standards for simpler, stronger authentication that define an open, scalable, interoperable set of mechanisms that reduce reliance on passwords. FIDO Authentication is stronger, more private, and easier to use when authenticating to online services.
FIDO Alliance PR Contact
An Update from FIDO Alliance on Authenticate Conference
Authenticate Event Team Authenticate, the inaugural FIDO conference, will be...March 27, 2020
Financial Action Task Force Guidance Points to FIDO as Preferred Approach to Combat Authentication Vulnerabilities
This month, the Financial Action Task Force (FATF) released its...March 18, 2020
Agenda Announced for Authenticate 2020, the First FIDO Conference
Note: Authenticate, the inaugural FIDO conference, has been postponed from...February 26, 2020