WebAuthn
- Date:June 21, 2018
- Author(s):
- Kyle Marchini
- Test
- Report Details: 4 pages, 0 graphics
- Research Topic(s):
- Fraud Management
- Fraud & Security
- PAID CONTENT
Overview
In April 2018, the World Wide Web Consortium (W3C) advanced the Web Authentication (WebAuthn) standard to the Candidate Recommendation stage.
This standard defines an application programming interface (API) that can be incorporated into browsers to facilitate public key cryptography-based authentication on laptop and desktop devices. Developed in conjunction with the FIDO Alliance, WebAuthn is a core component of the FIDO2 Project.
Notably, this API offers organizations a framework that can completely obviate passwords in customer authentication, although a number of factors, including customer expectations and hardware limitations, render it unlikely that any organization will eliminate passwords in the near future. Under WebAuthn, the site authenticating the user is able to directly interface with the authenticator, with passwords never making an appearance in the process.
Book a Meeting with the Author
Related content
2026 Fraud Management Trends
Criminals are increasing pressure on consumers through a variety of methods. In 2026 and beyond, phantom hacker scams, AI agents, and money mules all pose growing threats to the li...
New-Account Fraud: Old Problem, New Challenges
Fraudsters are finding new ways to open accounts without being detected. By using bots, AI-generated documents, deepfakes, and synthetic identities, they can slip past onboarding c...
Avoid the Fake: How AI Can Stop Bank Impersonation
Bank impersonation scams are on the rise and getting harder to detect. Criminals are using stolen information and crafting convincing messages to pose as banks, leaving victims in ...
Make informed decisions in a digital financial world