Thales background banner

FIDO and FIDO2 Devices

Strong Passwordless Authentication

Why Use FIDO and FIDO2 Devices?

FIDO2 is the umbrella term for FIDO Alliance's newest set of specifications. FIDO2 enables users to capitalize on common devices to authenticate quickly and securely to online services in both desktop and mobile environments. FIDO2 is the industry's solution to the global password challenge and addresses all of the concerns of traditional authentication. 

To reduce risk to your Windows logon, SaaS applications, users with high privilege and users in general, Thales supports FIDO passwordless authentication using multi factor-authentication (MFA) hardware devices. 

Switching to a Passwordless world

Replacing passwords with FIDO compliant devices introduces a modern passwordless MFA experience that is resistant to phishing attacks and account takeovers, and enables compliance.

Thales multi-factor authentication devices use current and emerging protocols to support multiple applications at the same time. Use one key that combines support for FIDO2, WebAuthn, U2F, and PKI to access both physical spaces and logical resources.

Organizations expanding their digital transformation are moving applications and data to the cloud to:

  • Enable accessibility from anywhere and
  • Decrease operating costs

As users log in to an increasing number of cloud-based applications, weak passwords are emerging as the primary cause of identity theft and security breaches.

FIDO Authentication Solutions

Id Prime Tab

One Device for FIDO & PKI or FIDO & Physical Access

Extend Modern Authentication to PKI Environments - Organizations that rely on PKI authentication can now use a combined PKI-FIDO smart card to facilitate their cloud and digital transformation initiatives by providing their users with a single authentication device for securing access to legacy apps, network domains and cloud services.

Physical Access - For optimum convenience, Thales FIDO smart cards support physical access enabling users to access both physical spaces and logical resources with a single customizable smart card.

 

USB Token with Touch Sense Options

USB Token with Touch Sense Options

The SafeNet eToken FIDO is a USB token, an ideal solution for enterprises looking to deploy passwordless authentication for employees. This authenticator is a compact, tamper-evident USB with presence detection, which creates a third factor of authentication: Something you have (physical token), something you know (PIN), something you do (touching the token).

IDP Compatibility

Thales FIDO devices are compatible with any IDPs that support the FIDO2 standard.

Tested IDPs include:

  • Thales SafeNet Trusted Access
  • Microsoft Azure AD
  • ForgeRock Access Management (Identity Platform)
  • Intercede MyID

SafeNet IDPrime 3940 FIDO and SafeNet eToken FIDO are FIDO2 and U2F FIDO certified, and are compatible with Microsoft Azure Active Directory accounts.

  • SafeNet FIDO2 Key Benefits

Arm your enterprise with strong and secure passwordless authentication to any environment.

Benefits include: 

  • Secure cloud adoption and bridge secure access across hybrid environments with a combined PKI/FIDO smart card
  • Easy access on multiple operating systems.
  • Passwordless access to cloud apps & network domains 
  • Single authenticator for all users' needs
  • CC certified
  • Supports all devices and OS (without middleware deployment)
  • Ideal for digital signatures and email encryption.
SafeNet FIDO2 Passwordless Devices - Solution Brief

SafeNet FIDO2 Passwordless Devices - Solution Brief

To reduce risk to your Windows logon, SaaS applications, users with high privilege and users in general, Thales supports FIDO passwordless authentication using multi factor-authentication hardware devices.

Passwordless Authentication: How Giving Up Your Password Might Make You More Secure - White Paper

Passwordless Authentication: How Giving Up Your Password Might Make You More Secure - White Paper

Passwords are one of the oldest security tools in the world of software and the internet. But in today’s environment, passwords cannot provide enough protection for businesses for several reasons.

Thales looks to extend SafeNet Trusted Access beyond FIDO with a touch of PKI - White Paper

Thales looks to extend SafeNet Trusted Access beyond FIDO with a touch of PKI - Report

SafeNet Trusted Access has recently introduced a number of new feature enhancements. • Bridging PKI and access management • Extending MFA and passwordless beyond the new FIDO standards • Adding more continuous assessments to SSO. Discover more about the extension of SafeNet...

Eliminate Passwords Forever With Passwordless MFA - 451 Research Report

Eliminate Passwords Forever With Passwordless MFA - 451 Research Report

Passwords have long been a popular form of authentication within the enterprise. But in the realm of security, popularity does not always equate to strength. The security flaws inherent in passwords are manifesting in the rising tide of data breaches related to credential...

FIDO Authentication - eBook

FIDO Authentication - eBook

IT security professionals around the world agree that passwords are obsolete and should be considered as a relic of the past. The costs of maintaining passwords outweigh the benefits. Passwords are increasingly becoming predictable and leave users vulnerable to credential...