Windows 10 gains FIDO certification for biometric logins

Microsoft’s war against passwords reaches a significant milestone as users are urged to use Windows Hello

The FIDO Alliance has granted Microsoft official certification for its Windows 10 authenticator Windows Hello from the forthcoming May 2019 upgrade.

Using facial recognition, fingerprint scanning, and a secure PIN number on Windows 10 from next month will be deemed 'FIDO2 Certified' for more than 800 million Windows 10 devices from next month. This means some significant weight will be added to Microsoft's long-term move away from conventional passwords.

The 'FIDO2 Certified' applies to systems that meet the alliance's standards for secure logins to websites and apps via biometrics, mobile devices, or FIDO security keys. These are also backed by strong cryptographic security.

And beyond just being used to sign into a Windows 10 user account, Windows Hello is compatible with an array of Microsoft services as well as web browsers, from Office 365 to OneDrive and even Mozilla's Firefox.

Advertisement
Advertisement - Article continues below

"Our work with FIDO Alliance, W3C and contributions to FIDO2 standards have been a critical piece of Microsoft's commitment to a world without passwords," said principal group program manager with Microsoft Yogesh Mehta.

"No one likes passwords (except hackers). People don't like passwords because we have to remember them. As a result, we often create passwords that are easy to guess - which makes them the first target for hackers trying to access your computer or network at work.

"Windows Hello was built to align with FIDO2 standards so it works with Microsoft cloud services and within heterogeneous environments."

Microsoft has also encouraged other companies and software developers to phase out passwords in the future by investing in alternatives.

The company has long been a detractor of password security, previously suggesting on numerous occasions that they pale against alternative authentication methods such as biometrics or two-factor authentication (2FA).

Just last month the company announced it would phase out 'expiring passwords' in the next Windows 10 upgrade. The firm suggested this dated security practice increases the likelihood of passwords being stolen because users are more likely to write them down.

Featured Resources

The IT Pro guide to Windows 10 migration

Everything you need to know for a successful transition

Download now

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Software-defined storage for dummies

Control storage costs, eliminate storage bottlenecks and solve storage management challenges

Download now

6 best practices for escaping ransomware

A complete guide to tackling ransomware attacks

Download now
Advertisement

Recommended

Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/security/identity-and-access-management-iam/354289/44-million-microsoft-customers-found-using
identity and access management (IAM)

44 million Microsoft customers found using compromised passwords

6 Dec 2019
Visit/cloud/microsoft-azure/354230/microsoft-not-amazon-is-going-to-win-the-cloud-wars
Microsoft Azure

Microsoft, not Amazon, is going to win the cloud wars

30 Nov 2019
Visit/network-internet/wifi-hotspots/354283/industrial-wi-fi-6-trial-reveals-blistering-speeds
wifi & hotspots

Industrial Wi-Fi 6 trial reveals blistering speeds

5 Dec 2019
Visit/hardware/354237/five-signs-that-its-time-to-retire-it-kit
Sponsored

Five signs that it’s time to retire IT kit

29 Nov 2019