Phishing-resistant biometric security key supports unlimited users per device to reduce costs and defeat security vulnerabilities associated with lost, stolen, and shared keys

EAST BRUNSWICK, N.J., Jan. 24, 2024 — 1Kosmos, the company that unifies identity proofing and passwordless authentication, today announced BlockID 1Key, a biometric security key to provide a phishing-resistant passwordless multi-factor authentication option for Sensitive Compartmented Information Facilities (SCIF), manufacturing clean rooms, customer help desks, higher education labs, retail bank branches, healthcare providers and other restricted environments where access to mobile devices is not permitted or available.

The BlockID 1Key which is connected to a shared workstation, is FIDO compliant and provides phishing-resistant passwordless MFA (multi-factor authentication) without the need to assign every user a physical key. This provides a cost advantage over conventional keys because one key can support unlimited users for each device, so fewer are required. BlockID 1Key also defeats unauthorized access due to key sharing and improves cycle time for customer-facing business processes, especially where login to multiple systems is required.

Organizations using BlockID 1Key can verify identity at the first and every access attempt, significantly improving defenses against password-based attacks such as phishing and vishing. In addition, the BlockID platform secures the registered biometric, accessible only at the time of authentication via a public and private key pair. This creates an immutable chain of custody, providing tamper-evident identity verification and phishing-resistant credentials.

For workstation-independent environments, BlockID 1Key supports a register-once-use-anywhere model that allows users to authenticate and work on any managed device. Users simply select any managed workstation, log in with their username and then touch the fingerprint sensor. This experience is quick and convenient, includes support for Windows login, and is also compatible with any WebAuthn service or application.

“Passwordless is extremely difficult and costly to deploy in environments such as call centers and manufacturing floors where mobile devices aren’t permitted or used,” said Hemen Vimadalal, CEO of 1Kosmos. “BlockID 1Key eliminates this roadblock and provides a phishing-resistant, scalable and interoperable passwordless experience for workers in dynamically assigned workspace settings – using a stationary, one-to-many FIDO-compliant key.”

The 1Kosmos BlockID Advantage

BlockID 1Key is a FIDO2 passkey and CTAP2 compliant, providing interoperability across various systems and delivering the following capabilities:

  • Open, scalable and interoperable passwordless authentication for organizations whose workers are dynamically assigned a workspace in environments where mobile devices are prohibited, such as hoteling office settings, call centers, manufacturing clean rooms, etc.
  • User/role specific access control policies that improve the authentication experience, and allow enrolled employees to use their biometrics to log in to secured desktops without the use of a password.
  • Phishing-resistant passwordless access to any supported desktop, once users have registered their biometrics at onboarding, using the 1Kosmos register-once-use-anywhere model.
  • Optionally combine NIST 800-63-3 IAL2-certified identity to the authentication experience.


BlockID 1Key is available immediately from 1Kosmos and its business partners worldwide.

About 1Kosmos BlockID

The 1Kosmos BlockID platform verifies user identity for straight-through onboarding of customers, workers and citizens. It creates a reusable digital wallet for high assurance authentication into digital services and instant validation of end-user qualifications, competencies, authority, and more. A unique privacy-by-design architecture centered around a private and permissioned blockchain eliminates centralized honeypots of end user personal identifiable information (PII), simplifying compliance to privacy mandates such as GDPR and providing organizations tamper evident verification to always know the identity behind devices accessing applications, data and services. BlockID has attained certification to NIST 800-63-3 and UKDIATF via Kantara, FIDO2 and iBeta DEA EPCS. It is delivered as a stand alone or embedded cloud service or via a managed service as a Credential Service Provider for residents.

About 1Kosmos

1Kosmos enables remote identity verification and passwordless multi-factor authentication for workers, customers and residents to securely transact with digital services. By unifying identity proofing, credential verification and strong authentication, the BlockID platform prevents identity impersonation, account takeover and fraud while delivering frictionless user experiences and preserving the privacy of users’ personal information. BlockID performs millions of authentications daily for government agencies and some of the largest banks, telecommunications, higher education and healthcare organizations in the world. The company is funded by Forgepoint Capital and Gula Tech Adventures with headquarters in East Brunswick, New Jersey. For more information, visit and follow us  on X and LinkedIn.

Press Contact

Marc Gendron
Marc Gendron PR for 1Kosmos