The Secure Element runs a FIPS‑140‑2 Level 3 validated random number generator, creating a 256‑bit ECDSA (P‑256) key pair on first use. 11. Conclusion Fortect Key brings together industry‑standard FIDO2 security , user‑friendly ergonomics , and centralized enterprise management to deliver a truly password‑less authentication experience. By eliminating reliance on shared secrets and vulnerable OTP mechanisms, organizations can dramatically lower their attack surface, meet regulatory obligations, and provide a frictionless login flow for employees, partners, and customers alike.
All tiers are subscription‑based (annual) with a per‑device cost that decreases as volume increases. A 30‑day free trial of the Management Console is available. Q1 – Does Fortect Key work on macOS without drivers? Yes. It uses native WebAuthn support, which is built into macOS 10.15+ and Safari/Chrome/Firefox.
All Fortect Key models meet an IP67 rating—safe from accidental spills and dust. fortect key
<script> // 1. Get the challenge from your server (Base64URL encoded) async function startLogin() const resp = await fetch('/webauthn/login-challenge'); const challenge, allowCredentials = await resp.json();
<button onclick="startLogin()">Log in with Fortect Key</button> The code works with any FIDO2‑compatible token—including Fortect Key—without any vendor‑specific libraries. | Practice | Recommended Action | |----------|---------------------| | Device Inventory | Keep a real‑time list of all issued Fortect Keys in the Management Console. | | Policy Enforcement | Require biometric unlock for privileged accounts. | | Lost Device Procedure | Revoke the compromised key instantly from the console; issue a replacement. | | Firmware Updates | Enable automatic secure‑boot firmware checks (Fortect Key pushes updates over the air). | | Physical Security | Store unused keys in a tamper‑evident container. | | Audit Logging | Enable detailed logging of authentication attempts for SOC‑2 and ISO‑27001 compliance. | 9. Pricing & Availability | Tier | Devices Included | Management Console | Support | |------|------------------|--------------------|---------| | Starter | Up to 25 keys | Basic portal (user‑level) | Email support (24 h) | | Professional | 26 – 250 keys | Advanced portal + API access | Phone & email (8 h) | | Enterprise | 251 + keys | Unlimited keys, SSO integration, custom RBAC | 24/7 dedicated account manager | The Secure Element runs a FIPS‑140‑2 Level 3
// 2. Convert to Uint8Array objects const publicKey = challenge: Uint8Array.from(atob(challenge), c => c.charCodeAt(0)), allowCredentials: allowCredentials.map(cred => ( type: 'public-key', id: Uint8Array.from(atob(cred.id), c => c.charCodeAt(0)), transports: cred.transports )) ;
Absolutely. The Management Console lets you enable multi‑factor policies that require both a TOTP and the hardware key for high‑risk actions. By eliminating reliance on shared secrets and vulnerable
Simply de‑provision the user in your IdP; the key is automatically revoked in the console, rendering it unusable.