What is FIDO?

FIDO (Fast IDentity Online) is a set of authentication standards and methods designed to replace password-only logins with fast, secure login experiences across websites and apps. FIDO uses data-rich identification methods such as biometrics, device profiling, and authenticators to remove friction while increasing security and success rates.

FIDO is larger than just Cardinal Commerce. The FIDO Alliance is a coalition of industry-leading companies in tech, payments, and commerce. The Alliance launched in 2013 with the goal of developing and promoting a unified cross-industry standard for more secure, robust authentication systems.

How does FIDO work?

In payments, a FIDO credential (in this case, passkey) needs to be linked to a PAN and device combination. These unique entities are identified and authenticated using tools like biometrics or authenticators. Both the methods of authentication and the keys that secure them stay on the device, removing reliance on server-side secrets and minimizing the risk from data breaches.

For more information on FIDO and how it works, see: https://fidoalliance.org/what-is-fido/

Who can enroll in FIDO with Cardinal?

The user’s device must have platform authenticators such as Face ID or Touch ID and the browser in use must be FIDO compatible. Also, Cardinal can only enroll Visa branded cards for the MVP of this solution.