Passwordless sign-in to the websites hosted by Microsoft Azure B2C
Remembering passwords for multiple websites is a mind-blowing problem. The common answer to this problem employs external authentication buttons, which delegate user authentication via OpenID Connect protocol to trusted identity providers (IDP), which are unlikely to be hacked, such as Google or Facebook. While this solution reduces the number of passwords to be remembered, it only solves part of the problem: users still must sign into IDPs. PalmID sign-in for Azure B2C takes sign-in to a new level.
Redrock Biometrics provides a biometric IDP, which can be logged in from a smartphone running PalmID Agent app. PalmID IDP login screen displays a unique per session QR code, user scans this code using PalmID Agent app, establishes connection between the phone and the session, scans palm with phone camera, and a successful match on IDP concludes the sign-in process.
This solution is highly secure: it requires a phone to be assigned to a registered phone number and checks user’s biometrics, which is practically impossible to spoof. It is also convenient: palms are always handy. On personal devices QR code can be skipped that makes the solution even more convenient.