What is FIDO2?
FIDO2 is the open web authentication standard for secure, passwordless logins. It combines the W3C Web Authentication specification (WebAuthn) and the FIDO Alliance Client to Authenticator Protocols (CTAP).
The API allows Relying Parties (AKA Service Providers) to register and authenticate users through high-secure public-key cryptography instead of a password.
The FIDO2 standard is supported on Windows 10, Android, iOS, HarmonyOS and the web browsers Google Chrome, Mozilla Firefox, Microsoft Edge and Apple Safari.
FIDO2 cryptographic login credentials are unique across every website, never leave the user’s device and are never stored on a server. This security model eliminates the risks of phishing, all forms of password theft and replay attacks.
Users unlock cryptographic login credentials with simple built-in methods such as fingerprint readers or cameras on their smartphone. Consumers can select the communication channel that best fits their needs between Bluetooth and NFC.
Because FIDO cryptographic keys are unique for each internet site, they cannot be used to track users across sites. Plus, biometric data, when used, never leaves the user’s device.
Websites can enable FIDO2 through a simple JavaScript API call that is supported across leading browsers and platforms on billions of devices consumers use every day.
