Re: Infrastructure
This particular article is about enterprise scenarios, where it's perfectly reasonable to be able to track users (i.e. employees) activity on enterprise systems.
On the broader question of whether FIDO tokens can behave like super-cookies, the answer is no. Your sign-in key for e.g. Google will be completely separate from your sign-in key for Microsoft. Neither company can access the other's keys - that's part of the WebAuthn spec.
