OtherInternational (FIDO Alliance/W3C)
FIDO2 / WebAuthn — Passwordless Authentication Standard
FIDO2 is the passwordless authentication standard developed by the FIDO Alliance and W3C. FIDO2 consists of two components: WebAuthn (W3C Web Authentication API) and CTAP2 (Client-to-Authenticator Protocol).
Domains
Passkey and Platform Integration
Security Requirements
CTAP2 (Client to Authenticator Protocol)
WebAuthn API (W3C)
Compare FIDO2 / WebAuthn — Passwordless Authentication Standard
FIDO2 / WebAuthn — Passwordless Authentication Standard vs ISO 27001:2022View comparison →FIDO2 / WebAuthn — Passwordless Authentication Standard vs SOC 2View comparison →FIDO2 / WebAuthn — Passwordless Authentication Standard vs NIST CSF 2.0View comparison →FIDO2 / WebAuthn — Passwordless Authentication Standard vs GDPRView comparison →FIDO2 / WebAuthn — Passwordless Authentication Standard vs HIPAAView comparison →FIDO2 / WebAuthn — Passwordless Authentication Standard vs PCI DSS 4.0View comparison →
FIDO2 / WebAuthn — Passwordless Authentication Standard by Industry
FIDO2 / WebAuthn — Passwordless Authentication Standard for Healthcare→FIDO2 / WebAuthn — Passwordless Authentication Standard for Financial Services→FIDO2 / WebAuthn — Passwordless Authentication Standard for Technology→FIDO2 / WebAuthn — Passwordless Authentication Standard for Government→FIDO2 / WebAuthn — Passwordless Authentication Standard for Manufacturing→FIDO2 / WebAuthn — Passwordless Authentication Standard for Energy→FIDO2 / WebAuthn — Passwordless Authentication Standard for Retail→FIDO2 / WebAuthn — Passwordless Authentication Standard for Education→
FIDO2 / WebAuthn — Passwordless Authentication Standard by Role
FIDO2 / WebAuthn — Passwordless Authentication Standard for CISOs→FIDO2 / WebAuthn — Passwordless Authentication Standard for Compliance Officers→FIDO2 / WebAuthn — Passwordless Authentication Standard for Risk Managers→FIDO2 / WebAuthn — Passwordless Authentication Standard for IT Directors→FIDO2 / WebAuthn — Passwordless Authentication Standard for DPOs→FIDO2 / WebAuthn — Passwordless Authentication Standard for Auditors→
Frequently Asked Questions
What is FIDO2 / WebAuthn?
FIDO2 is the passwordless authentication standard developed by the FIDO Alliance and W3C. FIDO2 consists of two components: WebAuthn (W3C Web Authentication API) and CTAP2 (Client-to-Authenticator Protocol).
How many controls does FIDO2 / WebAuthn have?
FIDO2 / WebAuthn contains 11 controls organized across 4 domains.
Where does FIDO2 / WebAuthn apply?
FIDO2 / WebAuthn is applicable in International (FIDO Alliance/W3C). Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does FIDO2 / WebAuthn map to?
FIDO2 / WebAuthn has control-to-control mappings with 500 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with FIDO2 / WebAuthn compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for FIDO2 / WebAuthn — Passwordless Authentication Standard?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.