Passwordless MFA Overview

What is passwordless authentication?

Passwordless authentication is the term used to describe a group of identity verification methods that don’t rely on passwords. Biometrics, security keys, and specialized mobile applications are all considered "passwordless" or "modern" authentication methods. idemeum is innovating toward a true passwordless future that balances usability with stronger authentication. Passwordless gives users a frictionless login experience, while reducing administrative burden and overall security risks for the enterprise.

Passwordless authentication ideally involves less user interaction during the login process than traditional forms of authentication. It uses public key cryptography, which authenticates the user with a pair of cryptographic keys — a private key that’s a secret, and a public key that isn’t — and it comes with a lexicon of new (or relatively new) acronyms and standards like FIDO2 standard (FIDO stands for Fast Identity Online, and FIDO2 is just an umbrella term for the combination of WebAuthn and Client to Authenticator Protocol (CTAP)).

What is idemeum Passwordless MFA?

idemeum is a mobile application that replaces shared secrets such as passwords, PINs, SMS codes and OTPs, with FIDO2 standards. Biometric sensors such as Apple Touch ID, Face ID, and their Android counterparts, can be used to securely access devices, applications, and infrastructure using public key cryptography. Logging into a company resource becomes as simple as canning a QR-code and approving login with biometrics.

At registration, idemeum securely generates a pair of cryptographic keys in addition to FIDO2 standards. The private key is stored on the user’s mobile device using hardware-backed crypto storage, whereas the public key is registered with idemeum backend. When users scan login QR-code with idemeum mobile application, they are required to authenticate with multiple factors - biometrics and certificates.

Idemeum benefits

1. Reduce cyber risk by stopping credential attacks - attackers simply can’t use passwords anymore - they don’t exist. idemeum can protect against login credentials being stolen or leaked in credential stuffing, credential cracking, social engineering, and phishing attacks.
2. Improve workforce experience and productivity - idemeum eliminates user friction - no more codes, magic links, hardware devices, and remembering passwords. idemeum offers a solution where strong security meets frictionless experience.
3. Reduce help desk calls for password resets - users no longer have to meet complex password requirements, change them every 60 days, or contact the help desk to resolve password lockouts and reset issues.

MFA Solution Brief

Download Passwordless MFA solution brief to learn more.