Sarcouncil Journal of Engineering and Computer Sciences

Abstract: Cloud computing has changed how companies implement authentication, requiring security that doesn't hinder and improves efficiency. This article examines OAuth 2.0 and FIDO2/WebAuthn as leading cloud authentication choices that solve the issues of traditional passwords. OAuth 2.0 employs tokens for authorization and access control, as FIDO2 delivers password-free authentication via hardware security. Key differences exist as OAuth 2.0 excels at federated identity and precise permission management. FIDO2 better deters phishing and negates the need to store passwords on servers. Tests show FIDO2 has faster authentication and uses fewer resources than OAuth 2.0, but registering credentials takes more processing power. OAuth 2.0 needs a large token management system, while FIDO2 needs good management of authenticators and user training. Combining FIDO2 with OAuth 2.0 offers strong security that fits with current applications. Companies can phase out passwords, starting with key accounts, based on risk and available tools.