Enforce a faster sign-in with Biometrics and Pin – even for legacy apps of a DAX company

Join this session if you want to learn how a globally operating science and technology company introduced a faster and phishing-resistant sign-in – driven by the open-industry standard FIDO.

Employees use Biometrics or Pin, instead of Password & SMS, Call or App.

A “Detached Authentication” feature enables apps without FIDO/WebAuthn support and allow us to globally enforce the phishing-resistant sign-in – without fallback to other MFA methods.

Identity Verification is required for the registration and recovery of Biometrics or Pin. SaaS or self-developed identity verification methods can be used and combined.

The infrastructure for authentication and registration of Biometrics and Pin runs in a self-hosted environment. It allows us to stay true to our principles: Own Identities, Credentials and Authentication.

# What makes it unique

• Biometrics or Pin of laptop & mobile phones for sign-in, Security Keys only for special use cases
• Chained Identity Verification for registration & recovery of Biometrics and Pin
• “Detached Authentication” for applications without WebAuthn-support
• Global enforcement of Biometrics and Pin, without fallback to SMS, Call or App
• Self-hosted credentials and authentication available for multiple IdPs