A password-free more secure internet as W3C approves WebAuthn as an open web standard


A new authentication standard has today been approved by the World Wide Web Consortium (W3C). The WebAuthn is an API that supports password-free logins on the web, replacing the password as a way of securing your online accounts. It was first announced by the W3C and the FIDO Alliance in November 2015. WebAuthn (which stands for Web Authentication) is already supported by most browsers, including Chrome, Firefox, Edge, Safari and W3C contributors, including Airbnb, Alibaba, Apple, Google, IBM, Intel, Microsoft, Mozilla, PayPal, SoftBank, Tencent, and Yubico. Its publication as an official web standard should pave the way for wider adoption by individual websites.

At its core, WebAuthn is an API that allows websites to communicate with a security device to let a user log into their service. This security device can range from a FIDO security key that you simply plug into a USB port on your computer to a more complex biometric device that allows for an additional level of verification. The important thing is that WebAuthn is more secure than the weak passwords people end up using for most websites, and it’s simpler than having to remember a string of characters




Though you surely have seen it but hadn’t notice, there is a demo of the W3C’s WebAuthn authentification solution on their website. head over there and check it out