Token, a company best known for its biometric smart ring, is now diving deeper into the enterprise security world with the launch of Token BioKey. This new line of FIDO-compliant security keys offers biometric, passwordless authentication that the company claims is resistant to phishing attacks and other common threats.
There are two models in the series: the standard Token BioKey, which connects over USB, and the Token BioKey Plus, which supports USB, Bluetooth, and NFC, and even includes a rechargeable battery for wireless authentication. Both variants feature a capacitive fingerprint sensor and store credentials inside an EAL5+ certified secure element.
This move could be a big deal for organizations looking to get serious about modernizing their authentication. Passwords are still a weak point for many companies, and SMS-based two-factor authentication has proven unreliable in the face of SIM swap attacks and phishing. The Token BioKey sidesteps these problems by using on-device fingerprint matching, which means the user’s biometric data never leaves the key itself.
Token is also betting on centralized control as a selling point. Its new Token Authenticator Console gives IT administrators the ability to assign keys, update firmware in the field, and manage security policies across large organizations. The keys are compatible with popular identity providers like Microsoft, Okta, Cisco Duo, Google, and Ping.
One of the more appealing aspects is that the keys are field-upgradable, which helps future-proof deployments in an industry where threats change fast. That’s a welcome contrast to many security tokens that ship with fixed firmware and are basically obsolete once a vulnerability is found.
Token BioKey is clearly geared toward businesses, not individual consumers. Enterprises interested in ditching passwords altogether and deploying phishing-resistant multifactor authentication can now request a demo at Token’s website.
