November 23, 2024 at 04:12PM Microsoft is testing updates to WebAuthn APIs that allow Windows 11 users to authenticate using third-party passkey providers alongside the native option, enhancing passwordless security. The updates, aimed at reducing data breaches, are rolling out to Windows Insiders, with ongoing collaboration with credential providers and developer support for plugin creation. … Read more
November 17, 2024 at 01:43PM The text discusses the concept of passkeys, a secure alternative to passwords, defined by the WebAuthn specification. While passkeys enhance security and reduce phishing risks, implementation issues and user experience challenges hinder widespread adoption. A systematic approach to security must prioritize user-friendliness to ensure effectiveness in protecting against online threats. … Read more
October 16, 2024 at 10:24AM The FIDO Alliance is enhancing passkey usability by creating guidelines for secure credential exchange across platforms, addressing transferability issues. Their draft specifications aim to improve interoperability among providers like Apple and Google, promoting faster, more secure sign-ins and supporting the adoption of passwordless methods, evidenced by Amazon’s implementation. **Meeting Takeaways … Read more
October 16, 2024 at 09:07AM Amazon reported that over 175 million customers now use passkeys for faster, passwordless sign-ins, enhancing security through cryptographic keys linked to biometric controls. The feature, initially introduced a year ago, is expanding to other services like AWS and Audible. The FIDO alliance has also announced a specification for portable passkeys. … Read more
October 16, 2024 at 04:55AM FIDO Alliance released new specifications for securely transferring passkeys between providers, coinciding with Amazon’s announcement of 175 million passkey users. This development highlights advancements in passkey technology and its growing adoption in securing user authentication. **Meeting Takeaways:** 1. **FIDO Alliance Update**: The FIDO Alliance has released new specifications aimed at … Read more
October 15, 2024 at 04:54PM Amazon has reported that over 175 million customers now use passkeys, enhancing sign-in speed significantly. Passkeys function as biometric or PIN-based digital credentials, improving security against breaches. Amazon plans to extend this feature to other services, while the FIDO alliance has introduced a new specification for portable passkeys. **Meeting Takeaways: … Read more
October 15, 2024 at 11:19AM The FIDO Alliance has released a draft specification to standardize the secure transfer of passkeys between providers, addressing portability issues. The Credential Exchange Protocol (CXP) and Credential Exchange Format (CXF) aim to enhance interoperability and security during credential migration. Feedback is welcomed for further refinement of these drafts. ### Meeting … Read more
January 11, 2024 at 09:19AM Passkeys, a password-less technology, utilize device-based authentication and public-key encryption. Though initially esoteric, they are gaining traction with major websites and identity ecosystems, supported by tech giants like Apple, Google, and Microsoft. The move towards mainstream adoption is underway, with a focus on developer adoption and tools to simplify implementation. … Read more
January 4, 2024 at 12:08AM Passkeys, supported by major technology firms like Apple, Google, and Microsoft, aim to streamline and secure online authentication, addressing the vulnerabilities of traditional passwords. With over 7 billion potential users, passkeys provide an alternative to memorized passwords, leveraging device-based security and biometrics. Third-party providers and various ecosystems offer different approaches … Read more
December 6, 2023 at 03:51PM Researchers uncovered a vulnerability, called “AutoSpill,” in popular Android password managers that could allow malicious apps to steal credentials through WebView’s autofill feature. Despite raising awareness and contacting affected parties, some password managers and Google have yet to effectively address the issue. The researchers suggest that passkeys could ultimately resolve … Read more