Improving QR Code Security in Passwordless Authentication

Session Details

QR code is being used in many applications as a means to support passwordless authentications. There are many risks to authentication systems that deploy QR-based solutions, including man-in-the-middle and phishing attacks. In this session, we will provide an overview of current work in OASIS ESAT TC that is developing guidelines for improving the security of passwordless systems that are based on QR code.