Understanding FIDO2 Authentication Protections

By

Learn how to make FIDO2 work for you.

FIDO2 is an open authentication standard that enables passwordless authentication by giving users options such as biometrics, USB tokens, and passkeys to log into servers and websites, explains Jai Vijayan.

FIDO2 is considered a robust protocol for protecting against phishing, man-in-the-middle (MITM), and session-hijacking attacks, Vijayan says, but this protection can be undermined, according to research from Silverfort.

"We're concerned that organizations will have a false sense of security that they are completely protected from a MITM attack if they use FIDO2," says Silverfort’s Dor Segal. “While the authentication itself is protected, the session it enables is not.”

In this article, Segal outlines a WebAuthn authentication flow and explains the protections of FIDO2, noting mitigation techniques you can use.

Learn more at Dark Reading.
 
 
 

 
 
 

05/20/2024

Related content

comments powered by Disqus