Passkeys serve as a modern alternative to traditional passwords, offering a faster, simpler, and significantly more secure way to sign in.
Designed to enable a completely passwordless login experience, passkeys provide both convenience and enhanced security for websites and apps. Unlike passwords, they are built on standardized technology that makes them resistant to phishing, inherently strong, and free from shared secrets. They streamline account creation, making it easier for users to register and log in across websites and applications. Additionally, they function seamlessly across all Apple devices and even extend to non-Apple devices that are nearby.
Passkeys leverage the WebAuthentication (WebAuthn) standard, utilizing public key cryptography to enhance security. When a new account is created, the system generates a unique cryptographic key pair, linking it to the account for the website or app. These keys are securely created and stored directly on the user’s device.
The key pair consists of two parts:
On Apple devices equipped with Face ID or Touch ID (iOS 16+), biometric authentication can be used to authorize the passkey, enabling a seamless and highly secure sign-in process. Because no shared secrets are transmitted, and the server does not need to safeguard sensitive credentials, passkeys offer a robust, phishing-resistant authentication method.
Technology leaders, through the FIDO Alliance, have collaborated to ensure that passkeys work across different platforms, making them a universally compatible and forward-thinking security solution.