Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
KZero Passwordless is a passwordless identity and access management platform built for MSPs/MSSPs. Its core goal is to replace traditional passwords, OTPs, and password-first MFA. It combines passwordless authentication, next-generation MFA, SSO, a biometric password vault, and security key capabilities into a multi-tenant platform, emphasizing reduced risk of credential theft, phishing, and man-in-the-middle attacks through biometrics, device-bound Passkeys, and public-key cryptography.
In terms of protection scope, KZero focuses on identity security rather than network perimeter defense. It mainly covers phishing-resistant MFA, Passwordless SSO, FIDO2/WebAuthn, SAML/OIDC, and password vaulting for legacy applications. Its login flow has the device’s private key sign a challenge, while the user unlocks access with a fingerprint or facial recognition; the private key is never transmitted. For older systems that still require usernames and passwords, KZero provides a biometric password manager that removes the master password and uses TDiSE, AES-256 key enhancement, and a distributed trust model to reduce centralized key risk.
The product is clearly designed for MSP use cases, supporting multi-tenant management from a single console, customer environment isolation, delegated administration, policy controls, centralized logs, and audit reporting. The materials also mention device self-registration, lost-device revocation, and re-registration, which can help reduce helpdesk tickets. On the integration side, it supports FIDO, SAML, and OIDC, making it suitable for modern web applications. PSA/RMM integrations are listed as a capability, but marked as Coming soon, so availability should be confirmed before deployment.
Pricing follows a monthly, no long-term commitment, pay-as-you-grow model, and the company claims there are no upfront implementation fees, onboarding fees, or hidden costs. Specific pricing is not public; the SSO page says pricing depends on partner needs, customer volume, and deployment requirements. Support options mentioned include live chat, email, phone, pre-sales/technical support, training, and a dedicated account manager, but no SLA is specified.
Its strengths are a clear cryptographic approach, MSP-friendly multi-customer operations, and support for both modern SSO and legacy applications. Its weaknesses are that its own compliance certifications are not disclosed, alerting capabilities are unclear, pricing is not transparent, and some integrations are not fully live yet. It is best suited for MSPs/MSSPs looking to package passwordless login, MFA, and SSO as a managed security service. Smaller internal IT teams at single enterprises should assess the platform’s complexity and cost before adopting it.
The collected information does not provide details on mainland China network accessibility, RMB payments, invoices, or local support, so china_access can only be marked as unknown. If delivering this in Chinese customer environments, it is recommended to test access to the console, mobile/desktop apps, and FIDO/WebAuthn workflows, and to evaluate local alternatives such as Microsoft Entra ID, Duo, JumpCloud, 1Password, Keeper, Bitwarden, and others.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on kzero.com official site.
kzero.com is an Canada Security provider. TG4G tracks its product information, an overall rating of 8.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach kzero.com directly.