Recent academic research has revealed new insights into the security considerations surrounding FIDO2 authentication and synced passkeys, highlighting both the strengths and potential vulnerabilities of current authentication systems. The analysis comes at a time when major technology companies are increasingly adopting passkey technology, with Microsoft reporting login times three times faster than traditional passwords.

Formal methods analysis of the FIDO2 standard has revealed potential weaknesses in the underlying protocols that warrant attention from security professionals. The research particularly focuses on the implementation of synced passkeys, which enable cross-device access through passkey providers. These findings support recent expert warnings about interoperability concerns in FIDO2 implementations.


More

Informatik aktuell: FIDO Passkeys 2 – in the future without a password

The FIDO Alliance is committed to making the Internet and its use easier to use…

Read More →

TechRadar: BitWarden adds passwordless SSO

Bitwarden has now added Single Sign-On (SSO) support for trusted devices on its enterprise tiers,…

Read More →

Smashing Security: 339: Bitcoin boo-boo, deepfakes for good, and time to say goodbye to usernames?

Podcast episode where FIDO Passkeys are mentioned and linked to.

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.