With the demise of password-based security and a growing diversity of authenticators over the last few years, a new streamlined repository to add and view FIDO Certified authenticators has long been needed. And here comes the Metadata Service version 3! The service was upgraded by the FIDO Alliance in collaboration with Hideez Group and introduced this week as a replacement to the deprecated MDS2.
What is MDS?
Metadata Service (MDS) is a centralized web repository of the Metadata Statement. FIDO MDS is a credible source of information about FIDO authenticators, their certification status, and security issues. Organizations deploying FIDO can use it to validate authenticator attestation and prove device authenticity.
Additionally, organizations can utilize certification information to comply with necessary regulations and use it to strengthen their security policies by restricting devices with certified-only policies.
Why is MDS3 better than legacy MDS2?
MDS3 brought a lot of improvements and advancements over the legacy MDS2. For comparison:
FIDO MDS2:
FIDO MDS3:
