Understanding FIDO2 Authentication Protections
FIDO2 is an open authentication standard that enables passwordless authentication by giving users options such as biometrics, USB tokens, and passkeys to log into servers and websites, explains Jai Vijayan.
FIDO2 is considered a robust protocol for protecting against phishing, man-in-the-middle (MITM), and session-hijacking attacks, Vijayan says, but this protection can be undermined, according to research from Silverfort.
"We're concerned that organizations will have a false sense of security that they are completely protected from a MITM attack if they use FIDO2," says Silverfort’s Dor Segal. “While the authentication itself is protected, the session it enables is not.”
In this article, Segal outlines a WebAuthn authentication flow and explains the protections of FIDO2, noting mitigation techniques you can use.
Learn more at Dark Reading.
Subscribe to our ADMIN Newsletters
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Most Popular
Support Our Work
ADMIN content is made possible with support from readers like you. Please consider contributing when you've found an article to be beneficial.