Mobile multi-factor authentication with biometrics

BIO-key MobileAuth: from local biometrics to enterprise-wide security.

Cluster of images and icons, finger print scanning, facial recognition, outline of a cloud symbol with a red box in the background

Seamless, secure, biometric-first smartphone MFA

Use the biometric readers on your employee’s smartphones to make access to your systems fast, easy, intuitive and protected to defense-grade standards. With BIO-key MobileAuth, authentication is fast, easy-to-use, reliable and requires minimal support.

Book demo

Leading the market in secure access

BIO-key MobileAuth

BIO-key MobileAuth delivers secure, easy-to-use mobile authentication powered by the local biometrics on users’ smartphones. It works with BIO-key PortalGuard and third-party platforms to enable defense-grade authentication for your entire user base, all from the app in the palm of your hand.

“BIO-key provided us with an easy way to implement two-factor authentication while maintaining roaming profiles for our users.”

Jennifer J. Edwards, Network Security Specialist, Collier County Supervisor of Elections

“It prevented us from losing millions of dollars in lost revenue due to the new MFA requirements placed on dealerships like ours.”

IT Director, Krumland Auto Group

“When it comes to authentication, these experts know what they are doing.”

IT Team, Grand View University

“We were impressed with BIO-key’s wide variety of multi-factor authentication (MFA) options for our customers to choose from to secure access to their desktops and applications.”

Carlos Cisneros, Managing Director, Darksteel Technologies

BIO-key MobileAuth capabilities

Verify the user not the device

Identity-bound biometrics verify who the actual user is, not just device ownership.

Add advanced 
MFA

Enables passwordless MFA via push notifications and advanced biometrics.

Multi-biometrics support

Includes face, fingerprint and palm scanning, all via the user’s own Apple or Android smartphone.

Centrally managed and stored

Hashed biometrics data is stored on the cloud, so there’s no risk of compromise if a device is lost or stolen.

Fast login

Reduce friction and improve user experience with one-tap push-approval notifications for fast logins.

Liveness detection

Prevent spoofing by using advanced liveness-detection to intercept and stop fake biometric copies

Simplified mobile-authentication management

Centralized policy control and administration via PortalGuard integration

Seamless integration

Works with BIO-key PortalGuard and with leading third-party authentication-management platforms.

Explore MobileAuth: smartphone MFA

See how BIO-key MobileAuth transforms your users' smartphones into secure biometric authentication devices

Book demo

Use cases

Man at the airport with luggage bad and laptop on his lap listening to something with earphone

A mobile workforce takes laptops into client and other third-party environments in which you don’t have full control.

Challenge

Find a way to prevent unauthorized access to these systems with high levels of security but without slowing down your users.

Outcome

With BIO-key MobileAuth, users can authenticate themselves quickly and securely, even when they can’t connect to MobileAuth servers.

Man and a woman looking at a tablet smiling in front of a cladded wall

Customers need an easy but compliant and secure means to authenticate themselves for services that use sensitive information.

Challenge

Finding a means of ID that does not require third-party devices, is easy to use and is secure.

Outcome

BIO-key MobileAuth enables customers to securely authenticate themselves with their own devices, quickly and easily.

Security centre with multiple screens showing cameras and people sitting at desks review each screen

An organization with a zero-trust environment needs a stronger form of identification to ensure that the authentication process isn’t a point of weakness.

Challenge

Finding an authentication method that is robust and integrates with the policy-defined zero-trust environment.

Outcome

BIO-key MobileAuth integrates with a range of zero-trust implementations to work as primary or step-up authentication.

Man and woman talking in an office environment with laptop and phone

A company needs a robust layer of technology-enabled protection against phishing, to underpin its user-awareness training and human-centered protection efforts.

Challenge

To make password theft impossible or of little or no use to cyber criminals without adding complexity for users.

Outcome

Criminals cannot easily steal or clone user biometrics but legitimate users can log in quickly and easily with BIO-key MobileAuth.

Integrations

Customer benefits

With BIO-key MobileAuth organizations can:

Combine locally accessed, centrally stored biometrics for convenience and security.

Reduce capital expenditure and minimize enrollment overheads by using already owned devices to authenticate.

Improve employee and customer experience with fast biometric authentication on familiar devices.

Bind authentication to one verified user only - unlike device biometrics that allow multiple users.

Combine locally accessed, centrally stored biometrics for convenience and security.

BIO-key case studies

Man waving at doctor on tablet screen sitting on sofa, doctor is smiling

Monash Health

Customized authentication for 14,000 healthcare users

Monash Health, a major Australian healthcare provider, needed a secure, HIPAA-compliant authentication solution to replace aging 2FA software and reduce password-related help desk calls.

Challenge

With over 3,000 password-related IT support calls per month, Monash Health required a scalable, customizable login solution for Outlook Web App and internal systems — without compromising regulatory compliance.

Outcome

Using BIO-key’s PortalGuard, Monash Health implemented secure 2FA and self-service password reset across devices and apps. The solution reduced help desk calls and improved compliance and user experience.

Read the case study

Talk to us about simplifying access management

Find out how BIO-key’s IAM solutions bring secure SSO, MFA, and adaptive authentication together in one platform.

Get in touch

Frequently asked questions

To activate MobileAuth, download the app from the App Store or Google Play. During your first login to a PortalGuard- or WEB-key-enabled system, you’ll be prompted to scan a QR code to link your device. Once paired, you can authenticate using push notifications, biometrics, or device-based passkeys.

Yes. For security reasons, biometric data is stored only on your device and is never transmitted or stored in the cloud. If you lose or replace your phone, you’ll need to re-enroll your biometrics on the new device. PortalGuard provides self-service recovery options or IT-assisted re-enrollment to restore access quickly and securely.

MobileAuth is designed to be flexible. If your device lacks biometric sensors, you can still authenticate using other supported methods such as:

Push notifications
PIN or passcode
FIDO2/WebAuthn tokens (if enabled by your organization)

This ensures that users without biometric-capable devices can still access systems securely.

MobileAuth uses identity-bound biometrics and device-based cryptographic keys to ensure that authentication is tied to the individual user and their device. It supports FIDO2/WebAuthn standards, which eliminate shared secrets and are resistant to phishing attacks. Biometric spoofing is mitigated by relying on the device’s secure enclave and native biometric protections (e.g., liveness detection).

Yes. PortalGuard and MobileAuth support adaptive authentication policies, allowing organizations to assign different methods based on user roles, device types, or contextual risk factors. For example, high-risk users may be required to use biometrics and push approval, while others may use OTP or PIN-based methods.

Complementary products

IAM platform:
PortalGuard

Discover more

FIDO security keys:
Biometric and non-biometric

Discover more

Additional resources

MobileAuth MFA product information

Learn more about the technical specifications, configurations, integrations and other aspects of BIO-key MobileAuth.

Download PDF

Speak to BIO-key today to find out how our advanced access management technology can help you achieve your security and business goals.

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Performance

Analytics

Others

Mobile multi-factor authentication with biometrics

Seamless, secure, biometric-first smartphone MFA

Use the biometric readers on your employee’s smartphones to make access to your systems fast, easy, intuitive and protected to defense-grade standards. With BIO-key MobileAuth, authentication is fast, easy-to-use, reliable and requires minimal support.

Leading the market in secure access

BIO-key MobileAuth

BIO-key MobileAuth delivers secure, easy-to-use mobile authentication powered by the local biometrics on users’ smartphones. It works with BIO-key PortalGuard and third-party platforms to enable defense-grade authentication for your entire user base, all from the app in the palm of your hand.

“BIO-key provided us with an easy way to implement two-factor authentication while maintaining roaming profiles for our users.”

“It prevented us from losing millions of dollars in lost revenue due to the new MFA requirements placed on dealerships like ours.”

“When it comes to authentication, these experts know what they are doing.”

“We were impressed with BIO-key’s wide variety of multi-factor authentication (MFA) options for our customers to choose from to secure access to their desktops and applications.”

BIO-key MobileAuth capabilities

Verify the user not the device

Add advanced MFA

Multi-biometrics support

Centrally managed and stored

Fast login

Liveness detection

Simplified mobile-authentication management

Seamless integration

Explore MobileAuth: smartphone MFA

Use cases

A mobile workforce takes laptops into client and other third-party environments in which you don’t have full control.

Challenge

Outcome

Customers need an easy but compliant and secure means to authenticate themselves for services that use sensitive information.

Challenge

Outcome

An organization with a zero-trust environment needs a stronger form of identification to ensure that the authentication process isn’t a point of weakness.

Challenge

Outcome

A company needs a robust layer of technology-enabled protection against phishing, to underpin its user-awareness training and human-centered protection efforts.

Challenge

Outcome

Integrations

Customer benefits

With BIO-key MobileAuth organizations can:

Combine locally accessed, centrally stored biometrics for convenience and security.

Reduce capital expenditure and minimize enrollment overheads by using already owned devices to authenticate.

Improve employee and customer experience with fast biometric authentication on familiar devices.

Bind authentication to one verified user only - unlike device biometrics that allow multiple users.

Combine locally accessed, centrally stored biometrics for convenience and security.

BIO-key case studies

Customized authentication for 14,000 healthcare users

Monash Health, a major Australian healthcare provider, needed a secure, HIPAA-compliant authentication solution to replace aging 2FA software and reduce password-related help desk calls.

Challenge

Outcome

Talk to us about simplifying access management

Frequently asked questions

Complementary products

IAM platform: PortalGuard

FIDO security keys: Biometric and non-biometric

Additional resources

MobileAuth MFA product information

Further reading

Find out what BIO-key can do for your business

Speak to BIO-key today to find out how our advanced access management technology can help you achieve your security and business goals.

Verify the user not the device

Add advanced 
MFA

IAM platform:
PortalGuard

FIDO security keys:
Biometric and non-biometric