Passkeys are the future of authentication, offering enhanced security and convenience over passwords, but widespread adoption faces challenges that the NCSC is working to resolve.

What’s wrong with passwords – why do we need passkeys?

Most cyber harms that affect citizens occur through abuse of legitimate credentials. That is, attackers have obtained the victim’s password somehow – whether by phishing or exploiting the fact the passwords are weak or have been reused.

Passwords are just not a good way to authenticate users on the modern internet (and arguably weren’t suitable back in the 1970s when the internet was used by just a few academics). Adding a strong – phishing-resistant – second factor to passwords definitely helps, but not everyone does this and not every type of Multi-Factor Authentication (MFA) is strong.


More

Biometric Update: New benchmarking tool shows passkeys boost conversion success by 30%

FIDO Alliance and Liminal collaborate on utilization snapshot The FIDO Alliance, in collaboration with digital identity…

Read More →

Forbes: Cybersecurity Is A Digital Identity Problem And We Must Deal With It

Digital Identity Means Security One particular leaf of that nettle is authentication, and here I…

Read More →

Biometric Update: Passkeys mature to occupy critical role in authentication for digital ID systems

The passkey tipping point may be fast approaching. As the anointed successor to passwords, passkeys are seeing…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.