As Facebook users increasingly deal with personal and payment data, the social media giant is turning to the Security Keys standard hosted through the Faster Identity Online Alliance for stronger authentication.
Facebook is encouraging users to consider registering a physical security key to their accounts. After doing so, users would tap a small hardware device that goes into the USB drive of their computers after enabling login approvals, Brad Hill, security engineer at Facebook, stated in a Thursday post to its
Those interested in the security key can purchase one through several FIDO-certified vendors to ensure more secure access to Facebook, Google and various other online services.
“By adding FIDO authentication to its security portfolio, Facebook gives their users the option to enable unphishable strong authentication that is no longer vulnerable to social engineering and replay attacks using stolen 'shared secrets' like passwords and one-time-passcodes,” Brett McDowell, executive director of the FIDO Alliance, said in a statement delivered to the media.
Facebook's endorsement of FIDO authentication technology is "a major milestone in the growth of the FIDO ecosystem" because the standards are now available to billions of Facebook users, McDowell said.
The security keys for Facebook logins currently work only with certain web browsers and mobile devices, so users will be asked to register additional login approval information, Hill said in the blog post.
Facebook has increased its discussions with payments providers and technology companies to advance payment capability through its
Over the past five years, the FIDO Alliance has grown to more than 250 members, featuring major payments companies, financial institutions and security technology firms, to establish stronger authentication methods and decrease the use of passwords for logging into accounts.
Most recently, FIDO accelerated its focus on payments, establishing a relationship with the EMV standards body
