Unpacking the FIDO Biometric Key: Are we finally one step closer to a passwordless future

From the end-user perspective, the picture is just as stark with 87% claiming to have lost their patience online due to password-related issues, according to the Thales Digital Trust Index with nearly a third citing the need to remember and reset credentials as their top frustration when interacting with companies online.

Against this backdrop, passwordless authentication is no longer a "nice to have". For enterprises managing large hybrid workforces, it's become a necessity. The challenge, until now, has been finding solutions that strike the right balance between strong security, regulatory compliance and genuine user adoption.

This is the backdrop behind the launch of the new FIDO biometric key, the Thales SafeNet eToken Fusion Bio. The level of market interest and industry discussion it has generated underlines the extent to which organisations have been seeking a solution that reconciles security, usability and compliance at scale.

This is a tangible step forward: a physical, highly portable key that makes authentication simple. By combining on-device biometrics with phishing-resistant FIDO2, users can authenticate without passwords, without apps, and without training. Crucially, private keys never leave the device - removing an entire class of risk from the equation.

The combination of FIDO standards and biometrics changes the dynamics of passwordless authentication, making end user adoption easy. FIDO2's authentication is based on public-key cryptography, instead of relying on shared secrets that can be guessed or stolen. There's nothing there for a threat actor to phish or compromise.

Biometrics, meanwhile, remove friction from the user experience - fingerprints and facial recognition are intuitive, familiar and already something that users have become comfortable with in their digital lives. In combination, enterprises have something that offers stronger security that encourages more natural, consistent use, all while feeling easier than passwords.

From frontline workers using shared workstations, to office and mobile workers, through to those in high-sensitivity roles, this approach delivers fast, secure access across every layer of the organisation.

No passwordless strategy works in isolation. Interoperability matters. That's why Thales is an active member of the FIDO alliance, helping develop and maintain industry standards. All our FIDO security keys are FIDO2 and U2F certified, ensuring compatibility across identity providers, credential management platforms and online services.

The addition of the eToken Fusion Bio strengthens our broader authentication portfolio and, more importantly, gives customers greater choice. Different users have different needs, but none should have to rely on passwords.