On Azure AD
Now offline and airplane login is supported.
FIDO2, an Open Standard for Authentication
FIDO2 is an open authentication standard that consists of W3C (World Wide Web Consortium) WebAuthn API (Web Authentication specification) and the CTAP (Client To Authenticator Protocol). WebAuthn has been implemented by the major browsers, and CTAP2 is supported by hardware and platform companies.
One of the most precise and accurate fingerprint recognition algorithms is implemented
Hardware-based authentication using Private and Public Key cryptography.
Strong single factor authentication (passwordless) or twofactor authentication is supported.
With the adoption of biometric technology extra layer of protection is implemented.
The security key cannot be used by unauthorized person whose fingerprint is not enrolled.
No security risk even if the key is lost.
A single security key works across thousands of accounts without sharing secrets
With the Goldengate key, the vulnerable username/password credentials can be now replaced with strong hardware-backed public/private key credentials.
These unique credentials cannot be misused, reused, or shared among different services. They are not subject to phishing and man-in-the-middle attacks or server data breaches.
FIDO2 security key is now an option for Windows Hello standard login in Windows 10.
You can register a security key and login to Microsoft accounts without password.