W3C enabling FIDO APIs for auth standard, Zwipe unveils embedded card sensor
18 February, 2016
category: Biometrics, Contactless, Corporate, Digital ID, Smart Cards
Web consortium using FIDO APIs for authentication
The World Wide Web Consortium (W3C) announced that it is launching a new standards effort in Web Authentication that aims to offer a more secure and flexible alternative to password-based log-ins on the Web.
For many, passwords are annoying and offer weak protection for their interactions. Even strong passwords can be lost in data breaches or targeted for replay in phishing attacks. W3C’s new Web Authentication work, based upon the member submission of FIDO 2.0 Web APIs from the FIDO Alliance, will enable the use of strong cryptographic operations in place of password exchange.
The Web Authentication effort will complement prior W3C work on a Web Cryptography API, currently in Candidate Recommendation status, and on-going work on Web Application Security specifications. The WebCrypto API provides a Javascript API to a standard suite of cryptographic operations across browsers. Work in WebAppSec includes improvements to the HTTPS experience and updates to Content Security Policy (CSP), enabling application authors to set policy for what active content is permitted to run on their sites, protecting them against injection of unwanted or malicious code.
Zwipe unveils card with embedded fingerprint sensor
Zwipe releases Zwipe ID, a card with fingerprint authentication capabilities targeted for the physical access control market.
With the same format as a standard card, Zwipe ID is targeted towards physical access control security systems. The Zwipe ID© card will be launched at ISC West, April 6-8 at the in Las Vegas.
Designed to work within regular MIFARE DESFire and MIFARE Classic access control systems provided by integrators around the world, the fully self-contained fingerprint system is used to identify the legitimate card owner.
Zwipe ID includes an integrated biometric sensor and utilizes the company’s biometric authentication technology to enable capture of the users fingerprint and to securely maintain the cardholder’s data on the card. The ability to harvest energy from installed access control readers not only eliminates the need for a battery, but also avoids costly reader replacement. On-card enrollment enables immediate implementation of two-factor authentication for Mifare and DESFire based access systems, both physical and logical.
Synaptics announces smaller fingerprint sensor
Synaptics Incorporated announced the Natural ID FS4304, a biometric fingerprint sensor designed with industrial design flexibility to fit small spaces including the edge of smartphones or tablets. FS4304 is 3.5mm wide and can be integrated into side-mounted buttons, such as the volume rocker, potentially eliminating the footprint and cost required of creating an additional cutout in the frame or glass.
