Hideez key supports U2F and FIDO2 standards protocols allowing for a seamless transition to passwordless authentication, while supporting the password-based logins.
Hideez Enterprise Server option integrates with Active Directory and other identity providers and allows secure, zero knowledge password distribution and incident response.
Hideez Key in combination with host client allow for proximity based (“tap and go” style) logins as well as unattended workstation logouts.
• U2F (Universal second-factor) authentication protects against phishing, session hijacking, man-in-the-middle, and malware attacks by transferring the credentials only to the original website or service.
• FIDO2 is a further development of the U2F protocol; thus, it has all the functionality of the U2F protocol plus passwordless authentication via WebAuthn API, and you don't need to create a login and password altogether.
• Compatibility with password-based legacy mode, providing password based systems with the highest levels of access control protections and usability.
• Secure password vault with button click based login/password entry and integrated TOTP capability.
• “Tap-and-go” proximity authentication and unattended workstation logout.
• Enterprise ready with Active Directory integration, zero-knowledge password, and incident response handling.
According to the Verizon's 2019 Data Breach Investigations Report, more than 80% of breaches leverage stolen or weak passwords. Recent research by Gartner predicts that by 2022, 60% of large and global enterprises and 90% of midsize enterprises will implement passwordless methods in more than 50% of use cases — up from 5% in 2018.
Instead of Login and Passwords one Hideez Key can provide access only based on FIDO2 Authentication Standard
Supplementing username and password can be a reliable second factor based on the U2F Standard
Can be as a one of Factors in MULTI-FACTOR Authentication cases
The Web Authentication API (also known as WebAuthn) is a specification written by the W3C and FIDO, with the participation of Google, Mozilla, Microsoft, Yubico, and others. The API allows servers to register and authenticate users using public key cryptography instead of a password.
It allows servers to integrate with the strong authenticators now built into devices, like Windows Hello or Apple’s Touch ID. Instead of a password, a private-public keypair (known as a credential) is created for a website. The private key is stored securely on the user’s device; a public key and randomly generated credential ID is sent to the server for storage. The server can then use that public key to prove the user’s identity.
The public key is not secret, because it is effectively useless without the corresponding private key. The fact that the server receives no secret has far-reaching implications for the security of users and organizations. Databases are no longer as attractive to hackers, because the public keys aren’t useful to them.
WebAuthn is part of the FIDO2 framework, which is a set of technologies that enable passwordless authentication between servers, browsers, and authenticators. As of January 2019, WebAuthn is supported on Chrome, Firefox, and Edge, and Safari.
Telecom & Mobile
Healthcare & Insurance
Financial services & payments
1.3 x 1.3 x 0.4 inch
Windows 10 and Android platforms
Google Chrome, Mozilla Firefox, Microsoft Edge
Asymmetric cryptography. Elliptic curve cryptography on the P-256 curve.
Bluetooth Low Energy
CR2032 up to 6 month
WARNING: Cancer and Reproductive Harm - www.P65Warnings.ca.gov
Please note that by posting this Warning, we are notifying you that one or more of the Proposition 65 listed chemicals may be present in a product. This warning does not mean the product poses any significant risk to your health. You can find more information HERE