Fido2 Key

Passwordless Authentication Solution

Fido2 Security Key

Fido2 key is a simple and strong two and multi-factor authentication solution designed to provide secure authentication for individuals using the web without the use of the standard user login of user name and password (no passwords needed). It maintains the highest level of user's privacy and solves the fragile password problems all at once.

About Fido2 

FIDO2 is the latest specification of the non-commercial FIDO Alliance (Fast Identity Online), which was created with the aim of developing open and license-free standards for secure, worldwide authentication on the World Wide Web. 

Why should you choose FIDO2 Key over the usual password solution?

Advantages of FIDO2 over password authentication

• Users don’t need to remember passwords anymore.
• The user can simply authenticate his identity by pressing a button on a USB device or tapping over NFC.
• Fido2 key can support any number of services.
• Fido2 key creates a customized new pair of keys for every website/service, and the service stores the public key only. This approach enhance security as no secrets are shared between service providers and the Fido2 key holder.

Disadvantages of password authentication

• Passwords are easily cracked by phishing attacks
• It is complicated to create a strong passwords
• Passwords are easily copied/ captured by a camera
• Passwords are often shared 
• Entering passwords is time consuming and expensive

How does Fido2 key work?

1. When the user registers the FIDO2 device at an account at a particular website (such as www.xyz.com) the device creates a new key pair usable only at this website and gives the website the public key to associate with the account.
2. When the user authenticates (i.e., logs in) to www.xyz.com, in addition to username and password, www.xyz.com checks whether the user has the FIDO2 device or not by verifying the key that was specifically created for this website (the signature created by the device).
    *The user can authenticate with just the username, if the site only wants a FIDO2 device verification
3. MFA Fido2 key require an additional fingerprint verification on the token to prove that the key holder identity as an optimum security level.
4. Fido2 keys aren’t' limited to a single website, it could be used across multiple sites on the web.

Fido2 key advantages

• Strong security 
  Strong two-factor and multi-factor authentication using public key crypto that diminish malware attacks, phishing, hijacking and man-in-the-middle attacks.
• Easy to use 
  simple user interface and instant authentication when plugged in or button pressed.
• High privacy 
  Allows users to choose, own, and control their online identity with no personal information shared to the services except for the specially created key that associates the user identity with the service.
• Multiple uses
  Fido2 keys aren’t' limited to a single website, it could be used across multiple sites on the web.