IdentityServer
FIPS and FIDO2/Passkeys
V4.0 of our FIDO2/Passkey component uses a FIPS 140-3 certified cryptographic module.
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
Articles
Filtering by 'fido2' in tags
-
FIPS and FIDO2/Passkeys -
Mitigate Phishing Attacks
Mitigate Phishing Attacks
What is a Phishing attack? What can organizations do to prevent phishing attacks? How does EvilJinx and FIDO come into play?
Kevin Jones
- •
- Job Role
- Consultant
-
Online Tutorials for FIDO2 for ASP.NET
Online Tutorials for FIDO2 for ASP.NET
Looking to get started with FIDO2 for ASP.NET and WebAuthn? Rock Solid Knowledge has released 4 new online tutorials to help you implement our “FIDO2 for ASP.NET” component.
Scott Brady
- •
- Job Role
- Security Consultant
-
Using Biometrics in ASP.NET Core
Using Biometrics in ASP.NET Core
Physical biometrics, such as fingerprint or facial recognition, are super useful when logging into mobile apps. It allows the user to prove their presence without having to manage a password or go through a Multi-factor Authentication (MFA) process. So why can't you use biometrics in the browser?
Scott Brady
- •
- Job Role
- Security Consultant
-
Strong Authentication Without the Drama
Strong Authentication Without the Drama
Confirmation of identity is central to all security decisions. A whole host of decisions are made based on a user proving who they are. Failing to successfully prove identity means the entire authorization system comes crashing down.
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
-
Announcing the First FIDO2 Certified Component for ASP.NET Core
Announcing the First FIDO2 Certified Component for ASP.NET Core
Rock Solid Knowledge is pleased to announce that their FIDO2 for ASP.NET component has now achieved FIDO2 certification from the FIDO Alliance. FIDO2 certification means that the FIDO Alliance has certified that our component complies with the FIDO specifications and meets specific security profiles.
Scott Brady
- •
- Job Role
- Security Consultant
-
Defeating Phishing with FIDO2 for ASP.NET
Defeating Phishing with FIDO2 for ASP.NET
Evilginx is a tool that allows you to create phishing websites capable of stealing credentials and session cookies despite the use of common 2FA mechanisms such as TOTP and push notifications. The only way to truly protect your users from this kind of phishing attack is using FIDO.
Scott Brady
- •
- Job Role
- Security Consultant
-
IdentityServer4 Components for ASP.NET Core 3.0
IdentityServer4 Components for ASP.NET Core 3.0
Microsoft released ASP.NET Core 3.0 a few weeks ago, which means breaking changes for everyone! However, you will be pleased to know that there are no breaking changes for the IdentityServer4 commercial components. Our products are now multi-targeting .NET Standard 2.0 and .NET Core 3.0, using a single codebase.
Scott Brady
- •
- Job Role
- Security Consultant
-
FIDO2 for ASP.NET Core - Solving the Password Problem
FIDO2 for ASP.NET Core - Solving the Password Problem
FIDO2 offers a replacement for passwords in the form of frictionless, possession-based authentication. Thanks to our newest component, FIDO2 for ASP.NET Core, this is now something Rock Solid Knowledge can help you with.
Scott Brady
- •
- Job Role
- Security Consultant
-
2FA All the Way
2FA All the Way
For over 30 years, we have used single passwords to verify identity, and we have known that they are vulnerable to a variety of attacks. Two-Factor authentication has been applied to strengthen the mechanism, but they often increase friction for the user, and can still be vulnerable to phishing attacks. The solution: FIDO2.
Andrew Clymer
- •
- Job Role
- Head of Identity and Access Management
-
FIDO2: The End of Passwords is Near
FIDO2: The End of Passwords is Near
There have been bold claims of killing passwords off for years. Recently there's been a lot of buzz about a potentially viable solution: FIDO2...
Scott Brady
- •
- Job Role
- Security Consultant
