Microsoft has announced its support for the FIDO2 security key devices, which will enable anyone to log into their Microsoft accounts without using traditional username and password-based credentials.
That means those using the latest version of Windows 10 (October 2018 update) will be able to use the Microsoft Edge browser to log into services like Bing, the Microsoft Store, Office, OneDrive, Outlook, Skype and Xbox Live with WebAuthn-enabled security keys like the Yubikey5 and the FEITIAN Biopass.
The USB devices plug into laptops or can use Bluetooth or NFC connections to authenticate identities without the need for a typed username and password. Essentially, it provides a variant of the dual-factor authentication methods we currently see, but deploys biometrics. Everything is handled within Microsoft Edge.
Related: Windows 10 free upgrade
In order to start using a hardware key, you must be using the Windows 10 October 2018 update. Microsoft advises you visit the Edge browser and sign in as normal. You can then select Security, “more security options” and then select “Windows Hello and security keys”.
After configuration, the next time you sign in you’ll see “more options” and will have the opportunity to use a security key. Those users with Windows Hello facial recognition, there’s also the ability to login without a username and password.
“Microsoft is the first company to support password-less authentication using the FIDO2 WebAuthn and CTAP2 specifications, and Microsoft Edge supports the widest array of authenticators compared to other major browsers,” Alex Simons, VP of program management at Microsoft Identity Division said on Tuesday.
“Passwords are bad for the planet. They’re bad for people. They’re the easiest way for attackers to get in, and in the case of account takeovers, they’re even a way to force people out,” said Microsoft VP of security Rob Lefferts added.
Have you already snapped up a security key? Let us know how you get on with the Windows 10 set-up @TrustedReviews on Twitter.