WebAuthn
- Date:June 21, 2018
- Author(s):
- Kyle Marchini
- Test
- Report Details: 4 pages, 0 graphics
- Research Topic(s):
- Fraud Management
- Fraud & Security
- PAID CONTENT
Overview
In April 2018, the World Wide Web Consortium (W3C) advanced the Web Authentication (WebAuthn) standard to the Candidate Recommendation stage.
This standard defines an application programming interface (API) that can be incorporated into browsers to facilitate public key cryptography-based authentication on laptop and desktop devices. Developed in conjunction with the FIDO Alliance, WebAuthn is a core component of the FIDO2 Project.
Notably, this API offers organizations a framework that can completely obviate passwords in customer authentication, although a number of factors, including customer expectations and hardware limitations, render it unlikely that any organization will eliminate passwords in the near future. Under WebAuthn, the site authenticating the user is able to directly interface with the authenticator, with passwords never making an appearance in the process.
Learn More About This Report & Javelin
Related content
Password Fatigue: A Case for Multilayered Passwordless Authentication
Traditional password-centered authentication is becoming less secure as cyberattacks increase in sophistication and consumers grow tired of strong password requirements. Financial ...
The Promise of Digital IDs: Reduced Fraud and Efficient ID Proofing
The move toward digital forms of ID is accelerating around the United States, and a greater use of such identification methods promises to reduce fraud losses and increase security...
2024 Identity Fraud Study: Resolving the Shattered Identity Crisis
The Javelin Strategy & Research 2024 Identity Fraud Study provides a comprehensive analysis of fraud trends in the context of a changing technological and payments landscape. Its g...
Make informed decisions in a digital financial world