Passwordless authentication has picked up in recent years. But the method drawing the most interest in security circles is physical security keys based on the FIDO2 standard.

These USB or NFC keys offer something beyond the usual passwordless methods, like synced device passkeys or biometric logins. Here, you’re not relying on cloud-stored credentials or browser memory. Instead, everything depends on holding the key and verifying it with something only you know, like a PIN or fingerprint.

This shift to hardware security keys is gaining momentum across industries. Dashlane, for instance, has just rolled out an update that enables users to make a FIDO2 key their main passwordless login for unlocking credential vaults.

In this article, we explore where passwordless authentication stands today, what makes physical keys different, and how platforms are handling the hard parts like recovery, usability, and long-term security.


More

The Economist: Where are the flaws in two-factor authentication?

The Economist reports that two-factor authentication methods using SMS or OTPs are flawed, and that…

Read More →

PC World: How Intel Core chips could take over two-factor authentication from your phone

Password manager Dashlane is taking advantage of a feature within Intel’s 8th-generation Core chips that…

Read More →

Science Friday Podcast: How To Make Spoof-Proof Biometric Security

On this episode of the Science Friday Podcast, Stephanie Schuckers, director of the Center for…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.