Integration guide for using Transmit BindID as a passwordless authentication provider.
Provide passwordless customer authentication for your application by integrating with Transmit Security's BindID ("BindID") authentication tool.
Integrate with BindID to reduce friction in your authentication experience without compromising security.
BindID offers a portable authentication solution that combines device-based FIDO biometrics with the OpenID Connect ("OIDC") protocol.
BindID uses device biometrics, such as built-in fingerprint scanners, or the native biometrics of mobile apps to authenticate. BindID identifies customers by email address and can tie multiple authenticating devices to the same customer account. BindID offers alternative email-based authentication methods if a customer's device doesn't support FIDO. Ultimately, customers will use the strongest authentication method available for their trusted device.
On your side, you only need to request authentication, BindID handles the rest: beyond authentication, BindID can register customers and enroll their authenticating devices, and can also manage account recovery.
BindID also allows you to transition gradually existing customers from credential-based to device-based authentication.
Authenticating device: a customer-owned device, such as a mobile, desktop, or even a browser that supports FIDO biometric authentication or capable of authentication via a PIN or passcode.
Test application: the application you want to integrate with BindID.
Tenant: the software instance where you access the admin console of the service.
General understanding of the OIDC Authorization Code Flow grant type
A test application you want to protect using Strivacity Fusion's passwordless integration kit leveraging BindID
To demonstrate the integration process, the test application will be Strivacity Fusion's robust customer self-service management utility. The process will look mostly the same for any other application.
Customer authenticating device e.g. a desktop or mobile device which is
connected to the Internet
has the ability to scan QR-codes
has FIDO-based device biometrics or mobile apps with native biometrics