Introduction to Passwordless X1280
Passwordless X1280 is a free passwordless software solution provided by the Passwordless Alliance to help B2C online services eliminate the need for passwords worldwide. It is developed based on the international standard ITU-T X.1280. Online services can adopt Passwordless X1280 by installing the passwordless server software and guiding users to install the passwordless mobile app, followed by a simple user registration process.
Once Passwordless X1280 is implemented, users no longer input passwords into online services. Instead, the online service automatically presents a password to the user, who confirms it via the mobile app and approves the login using biometric authentication on their smartphone. Passwordless X1280 shifts the burden of password verification from the user to the online service, allowing users to access services more conveniently and securely.
Furthermore, there is no need to attach separate biometric sensors to each user device. All B2C online services can perform secure, out-of-band biometric authentication using the biometric sensors already built into users’ smartphones.
Passwordless X1280 Features
feature 1
Switching from Inconvenient Passwords to Automatic Passwords
Instead of users manually entering passwords for the online service to approve, the service presents an automatic password to the user, who simply approves it. This frees users from the hassle of remembering or typing passwords.
feature 2
Mobile biometric authentication without the need for separate biometric sensors
When the user approves the auto-generated password presented by the service, their identity is verified through the built-in biometric sensor on their smartphone (fingerprint or facial recognition). As a result, there is no need to install separate biometric sensors on each user’s PC, enabling out-of-band biometric authentication without additional cost.
feature 3
Manage Passwordless for multiple online services with one app
You can register and manage multiple online services with a single Passwordless X1280 app. Since a private key is issued to the Passwordless X1280 app for each online service account that supports Passwordless, it offers excellent security. Users can manage Passwordless for all their online services with one app.
Passwordless X1280 Usage Procedure
01 Passwordless X1280 server installation and connection
API integration after installing PasswordlessX1280 server in existing online service
02 Connect user account to Passwordless X1280 app
Connect the user account of the online service to the Passwordless X1280 app (after verifying your identity in the login window, scan the QR code for passwordless registration with the Passwordless
03 Check the automatic password and log in
After the user enters their ID, they check the automatic password presented by the online service with the Passwordless X1280 app and then log in.
Passwordless X1280 system layout
- After installing the Passwordless X.1280 server on the online service and completing the API integration and passwordless UI settings, distribute and use the passwordless
License key issuance procedure for Passwordless X1280 server
- In order for an online service operating company to use a Passwordless X.1280 server, it must register as a service member of the Passwordless Alliance and submit a passwordless service application. A license key will be issued after your passwordless service application has been verified by a local Truster member. It can be activated by registering the issued license key on the Passwordless X1280 server.
- When used for testing purposes, no separate verification procedure is required. If you want to use it for testing purposes, select the purpose of use as testing when submitting an application for the passwordless service and a license key will be automatically issued. However, domain linking is not supported.