Users can now log-on to websites and cloud services with password-free multi-factor authentication
6 October 2020, London, UK:
Nomidio’s vision to provide users with a single digital identity accessed through a simple biometric experience moved a step closer today as it secured OpenID Connect certification. The OpenID Connect standard is a simple identity layer on top of the popular OAuth 2.0 protocol, used by the vast majority of cloud service providers and websites.
Certification means that website owners or cloud service providers can now easily allow users to swap passwords and two-factor authentication for a simple and secure biometric log-on experience with Nomidio.
Ben Todd, Head of Worldwide Sales, Nomidio said: “Today, if I log-on to my employer’s cloud service I need a password and my phone so I can confirm using two-factor authentication, not to mention parting with lots of my personal data. The same is true for the services in my personal life, we literally have hundreds of digital identities, tons of passwords and personal data scattered everywhere. Plugging Nomidio into the OpenID ecosystem solves this by giving each user one unified digital identity to log-on everywhere.”
He continued: “No single company can solve identity, we need an ecosystem like OpenID that brings digital service providers together with identity specialists. Virtually any business can now allow its users to turn their face or voice into their multi-factor password with Nomidio.”
The move streamlines the log-on experience for businesses and their employees by removing the need for complex password policies and third-party multi-factor authentication services. Instead, users logging on with Nomidio benefit from silent multi-factor authentication including a private key held within a web browser, a unique device ID as well as the user’s biometric face and voice prints. This removes the need for one-time passcodes, allowing the user to complete the log-on experience in a single 30 second interaction.
Philip Black, Commercial Director, Nomidio commented: “Businesses need biometric multi-factor authentication because it’s the only way to prevent employees from writing down and re-using passwords and sharing credentials. No matter how much effort a firm invests in employee access management, it’s worthless if those employees can share their passwords and one-time passcodes.”
He continued: “Imagine you’re out on the road without a mobile signal or battery, with today’s device-centric approach to multi-factor you’re locked out.”
Nomidio is different because the secure cloud service stores the user’s personal identity information just once, with several layers of encryption, so that multiple subscribing organisations don’t have to. Now, when a company needs to authenticate a user it can simply call the Nomidio service using OpenID Connect so they can complete the biometric check.
Nomidio is a business dedicated to re-imagining all aspects of digital identity so individuals are empowered with a digital identity that’s secure, unique, widely used and over which they retain control. Nomidio Identity Verification is the first service to go live, focused specifically on helping companies to quickly and cost effectively validate the identity of prospective customers. Nomidio has also developed the world’s most advanced consumer identity and authentication service.
Nomidio’s parent company Post-Quantum is dedicated to ensuring that organisations can carry out their operations safely and securely. Post-Quantum is one of a handful of leaders in the development of new quantum-safe encryption algorithms that are able to withstand the threat posed by quantum code-breaking. Post Quantum’s algorithm NTS-KEM is a finalist in NIST’s competition to find a replacement to RSA, today’s public-key cryptographic standard. The company provides a range of encryption products, services and IP to financial services firms, technology leaders and governments around the world.