FIDO Alliance releases new guidelines for adoption of security keys

The FIDO Alliance has released new user experience (UX) guidelines to help accelerate deployment and adoption of multi-factor authentication (MFA) with FIDO security keys.

The FIDO Security Key UX Guidelines are available at https://fidoalliance.org/ux-guidelines/.

FIDO security keys – small, portable high-security devices that connect to a phone or computer via USB, Bluetooth or NFC – are considered by many to be the “gold standard” for multi-factor authentication. Simply touching this device during sign-in protects accounts from a targeted attack 100% of the time. Many services, including Twitter and Facebook, now offer the option to enable FIDO security keys for mobile and desktop access.

The aim of the FIDO Security Key UX Guidelines is to help online service providers design a better, more consistent user experience for the consumer security key audience and ultimately maximise adoption. The document provides UX guidelines for all major steps of a consumer’s journey with FIDO security keys: awareness; consideration; enrolment; management; and authentication.

“Having reached widespread support for FIDO Authentication across the web, the FIDO Alliance is increasingly focused on ways to grow and ultimately reach mass adoption. One of our primary areas of focus towards this objective is making FIDO more usable and accessible,” said Andrew Shikiar, executive director and CMO of the FIDO Alliance. “We’ve established a FIDO UX Task Force consisting of UX experts from around the globe to conduct research and provide guidance on how to optimize user journeys as users enrol in, and subsequently sign in, with FIDO in various use cases. Today’s guidelines follow our first set of UX guidelines focused on the desktop authenticator user experience, with more to follow. I strongly encourage service providers to leverage these best practices when rolling out FIDO Authentication.”

The guidelines were created by the FIDO Alliance UX Task Force in partnership with usability research firm Blink UX. They conducted formal research of FIDO user journeys and actively engaged with FIDO Alliance stakeholders to establish these FIDO security key UX best practices. The guidelines were developed following multiple sessions of moderated and unmoderated consumer research conducted by Blink UX, in collaboration with FIDO UX Task Force members.