Microsoft goes password-less through FIDO2 certification
Microsoft has enabled functionality for sign-on using either a FIDO2 device or biometric tool Windows Hello – thus potentially paving the way to kill off the password.
The move will mean users can more seamlessly sign in to a variety of applications, from Outlook, Skype and Office, to OneDrive, Cortana and Xbox Live.
Writing in a blog post confirming the move, Alex Simons, corporate vice president of program management in Microsoft’s identity division, said the company was ‘on a mission to eliminate passwords and help people protect their data and accounts from threats.’
This has certainly been true when looking at previous Microsoft missives; writing in September, Rob Lefferts, corporate vice president for security, feted ‘the end of the password era.’ At the time, new support for password-less sign-in through Microsoft Authenticator – essentially removing the password and replacing it with multi-factor authentication of users’ choice, be they fingerprint, face or PIN – was the new kid on the block. “No company lets enterprises eliminate more passwords than Microsoft,” Lefferts wrote at the time. “Today, we are declaring an end to the era of passwords.”
FIDO2 works through public and private key encryption, with the private key being stored on the device and the public key, in this instance, sent to Microsoft’s cloud. Security keys are through partners, such as Yubico and Feitian Technologies.
Enterprise customers will be able to preview the feature early next year, while future plans include moves beyond the browser to work and school accounts in Azure Active Directory.
You can find out more here.
Interested in hearing industry leaders discuss subjects like this and sharing their experiences and use-cases? Attend the Cyber Security & Cloud Expo World Series with upcoming events in Silicon Valley, London and Amsterdam to learn more.