FIDO2 passwords have arrived for Amazon Web Services (AWS) to power multi-factor authentication (MFA) on the cloud platform.
The new authentication method will soon become standard, with root AWS users having until the end of July 2024 to enable MFA.
The new MFA option improves account security, ensures synchronicity between platforms, and protects against a number of threats, including phishing attacks.
Industry trends towards password keys
FIDO2 passwords provide a secure alternative to passwords by providing an authentication system that uses proven public key cryptography. The only way to decrypt the access key generated by the public key chain is to use the user’s personal device, which hides the private key, adding an extra layer of security.
While some of the best password generators can provide highly secure passwords that are unique to each account, and the best password managers can help keep them safe, a single password leak can put your accounts at risk.
BleepingComputer says Amazon is adhering to CISA’s recommendations as part of its Secure by Design pledge, meaning MFA will soon become standard within AWS.
Access keys will be available with a number of biometric authentication options, such as Apple’s Touch ID and Windows Hello on laptops, and more. The rollout will initially only affect a small number of users before gradually expanding to general user accounts and root users of member accounts. However, it is recommended that all users activate an MFA method in the meantime.