Passkeys are a new type of login credential that allow users to authenticate without having to enter a username or password, or provide any additional authentication factor. They are a digital credential that is used as an authentication method for a website or application). Passkeys are a type of passwordless authentication, promoted by the World Wide Web Consortium and the FIDO Alliance). They are designed to be more convenient and phishing-resistant than conventional authentication methods). Passkeys are stored on a users device, such as a smartphone or computer, and are used to unlock online accounts. They work using public key cryptography and proof that the user owns the credential is only shown to the online account when the user unlocks their device. Passkeys are resistant to online attacks like phishing, making them more secure than things like SMS one-time codes.
Some key features of passkeys include:
-
Biometrics: Passkeys use biometrics like a fingerprint or face scan, or a screen lock PIN to securely log users into their accounts across the web.
-
Encryption: Passkeys are stored in an encrypted format on a users device instead of on a companys servers, which keeps them safe in the event of a data breach.
-
Phishing-resistant: Passkeys are resistant to online attacks like phishing, making them more secure than things like SMS one-time codes.
Passkeys are a possession-based authentication method leveraging advanced cryptography. They change the paradigm of how people are typically authenticating online today by replacing the password with an unphishable primary factor for user authentication that is built into virtually every modern computing device today. Passkeys are a safer and easier alternative to passwords. They reduce costs for sending SMS, making them a safer and more cost-effective means for two-factor authentication.
