WebAuthn
- Date:June 21, 2018
- Author(s):
- Kyle Marchini
- Al Pascual
- Report Details: 4 pages, 0 graphics
- Research Topic(s):
- Fraud Management
- Fraud & Security
- PAID CONTENT
- Download summary
Overview
In April 2018, the World Wide Web Consortium (W3C) advanced the Web Authentication (WebAuthn) standard to the Candidate Recommendation stage.
This standard defines an application programming interface (API) that can be incorporated into browsers to facilitate public key cryptography-based authentication on laptop and desktop devices. Developed in conjunction with the FIDO Alliance, WebAuthn is a core component of the FIDO2 Project.
Notably, this API offers organizations a framework that can completely obviate passwords in customer authentication, although a number of factors, including customer expectations and hardware limitations, render it unlikely that any organization will eliminate passwords in the near future. Under WebAuthn, the site authenticating the user is able to directly interface with the authenticator, with passwords never making an appearance in the process.
Interested In This Report
Related content
The Power of One: Reducing the Impact of Identity Fraud
This report, sponsored by Neustar, a TransUnion company, explores identity fraud and the necessary steps business enterprises must take into consideration as a means of streamlinin...
New-Account Fraud: A Threat Down Every Avenue
This report, sponsored by BioCatch, explores the real-life risks and impacts of new-account fraud on financial institutions and consumers. This report is derived from the 2022 Iden...
Robo Nation: The Threat of Communication-Based Fraud
Consumers are unable to escape the increasing surge of robocalls, scam texts and phishing emails that were heightened by the pandemic and continue on an upward trend. But communica...
Make informed decisions in a digital financial world