KuppingerCole Report
Executive View
By Alexei Balaganski

Nok Nok Labs S3 Authentication Suite

Nok Nok Labs S3 Authentication Suite is a unified strong authentication platform that incorporates FIDO Alliance specifications and other industry standards, as well as proprietary innovations. The S3 Authentication Suite provides a full stack of client- and server-side technologies for incorporating interoperable and future-proof risk-based biometric authentication into mobile and web applications.

1 Introduction

Nok Nok Labs is a privately held, venture-backed American company based in Palo Alto, California. It was founded in 2012 by a team of security industry veterans from companies such as PGP, PayPal and Netscape with an ambition to overcome many challenges of existing authentication methods and provide a scalable, secure yet easy-to-use and standard-based foundation for online authentication to unify the existing identity silos and to finally get rid of the long-outdated and deeply flawed password authentication.

Security experts have been predicting “death to passwords” for over a decade, yet despite all their efforts and the number of strong authentication solutions available on the market, passwords are still very much alive. In fact, with the continuing proliferation of cloud services, mobiles and other types of connected devices, the number of credentials users must deal with is only increasing. Over the years, the industry has come up with multiple password replacement products ranging from hardware OTP tokens and smartcards to various biometric technologies such as fingerprint scanning and facial recognition. Although some of these products have found their uses (primarily for large enterprises or highly regulated industries such as online banking), they have all failed to gain enough market penetration, especially with consumers. Reasons such as equipment costs, lack of interoperability, scalability issues and last but not least, complexity of deployment and usage, make organizations reluctant to invest into strong authentication and get rid of passwords, which are oh so cheap and convenient.

The company’s founders have always understood that a lack of standards was one of the primary inhibitors to broader adoption of strong authentication technologies. This is why Nok Nok Labs was one of the four founding members of the FIDO (Fast IDentity Online) Alliance, a non-profit organization publicly announced in February 2013 to address interoperability problems among strong authentication devices. Currently, the FIDO Alliance comprises over 260 members, among which are strong authentication vendors including Nok Nok Labs, payment providers such as PayPal or Alibaba and IT industry giants like Microsoft and Google.

In December 2014, the FIDO Alliance published the first version of their specifications encompassing two parts: Universal Authentication Framework (UAF), which is focused on password-less user experience on mobile devices and Universal Second Factor (U2F), which relies on various hardware tokens to augment existing password infrastructures. Together, these standards form a common foundation for a large ecosystem of various hardware, mobile and biometric authentication devices, providing certified interoperability, privacy enhancement based on strong cryptography and, last but not least, convenient and consistent user experience.

With FIDO specifications, any company can design and deploy a standard-based, scalable and future-proof strong authentication solution, spanning previously isolated identity silos without the risk of vendor lock-in. It is important to understand, that FIDO specifications are industry standards, not products and not every company possesses the expertise to design such an architecture from scratch. This is where Nok Nok Labs comes to the rescue, offering the full stack of client- and server-side technologies needed to incorporate risk-based biometric authentication into mobile or web applications. Nok Nok products are FIDO-certified, of course.

2 Product Description

The impressive speed at which the FIDO specifications have been developed (in around 20 months, which may very well be a world record) and the equally ...

Login Get full Access

3 Strengths and Challenges

With their S3 Authentication Suite, Nok Nok Labs provides a fully integrated and extensible strong authentication platform based on the FIDO Alliance ...

Login Get full Access


©2021 KuppingerCole Analysts AG all rights reserved. Reproduction and distribution of this publication in any form is forbidden unless prior written permission. All conclusions, recommendations and predictions in this document represent KuppingerCole´s initial view. Through gathering more information and performing deep analysis, positions presented in this document will be subject to refinements or even major changes. KuppingerCole disclaim all warranties as to the completeness, accuracy and/or adequacy of this information. Even if KuppingerCole research documents may discuss legal issues related to information security and technology, KuppingerCole do not provide any legal services or advice and its publications shall not be used as such. KuppingerCole shall have no liability for errors or inadequacies in the information contained in this document. Any opinion expressed may be subject to change without notice. All product and company names are trademarks™ or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.

KuppingerCole Analysts support IT professionals with outstanding expertise in defining IT strategies and in relevant decision-making processes. As a leading analyst ompany, KuppingerCole provides first-hand vendor-neutral information. Our services allow you to feel comfortable and secure in taking decisions essential to your business.

KuppingerCole, founded in 2004, is a global, independent analyst organization headquartered in Europe. We specialize in providing vendor-neutral advice, expertise, thought leadership, and practical relevance in Cybersecurity, Digital Identity & IAM (Identity and Access Management), Cloud Risk and Security, and Artificial Intelligence, as well as for all technologies fostering Digital Transformation. We support companies, corporate users, integrators and software manufacturers in meeting both tactical and strategic challenges and make better decisions for the success of their business. Maintaining a balance between immediate implementation and long-term viability is at the heart of our philosophy.

For further information, please contact clients@kuppingercole.com.