"New FIDO Proposal: Securely Transfer Passkeys Across Platforms for Enhanced Online Security"

New FIDO Proposal Enables Secure Passkey Transfers Across Platforms

Source: Bleeping Computer

Overview of Passkeys

• Passkeys utilize public-key cryptography for authentication without needing passwords.
• They enhance login speed and security, with reports indicating a 75% increase in speed and a 20% improvement in success rates compared to traditional methods.

Challenges with Current Passkey Systems

• Existing systems lack a secure way to transfer passkeys between providers, leading to vendor and device lock-in.
• This fragmentation creates user experience complications and introduces security risks during transfers.

FIDO's Proposed Specifications

• The new specifications consist of the Credential Exchange Protocol (CXP) and Credential Exchange Format (CXF).
• CXP facilitates secure credential transfers using Diffie-Hellman key exchange and hybrid public key encryption.
• CXF ensures a standardized structure for seamless transfers while maintaining data integrity and interoperability.

Collaboration and Future Developments

• Developed with contributions from industry leaders, including Google and Microsoft, the specifications are currently in draft form.
• Feedback can be submitted via the FIDO GitHub page, which will update drafts based on community input.

Conclusion

The new proposal from the FIDO Alliance aims to simplify and secure the use of passkeys, potentially revolutionizing how users interact with digital authentication methods while addressing critical security concerns.