Passkeys
Offer the simplicity and security of Face ID or fingerprint login to your customers. Add Corbado's passkey solution to your website in minutes.
Free passkeys analyzer
Find out how many of your users can use passkeys with our free passkeys analyzer.
Why now?
Be a leader by integrating passkeys. See why Apple, Google and Microsoft recommend passkey implementation now.
In 2023, >80% of global devices are passkey-ready.
We offer you an easy-to-use solution.
Simple integration
Integrate Corbado flexibly via hosted page, web component or API-only integration.
In 2023, >90% of global devices are passkey-ready.
Free passkey tracking tool
Find out how many of your customers are technically able to use passkeys with our free passkey tracking tool.
Why now?
Be a digital leader by providing secure and customer centric authentication. See why Apple, Google and Microsoft recommend passkey implementation now.
Adoption details
Curious about today’s passkey adoption levels? See our overview of supported devices, browsers, and operating systems.
Eager to offer passkeys but need more information?
Find out how passkeys can replace passwords in logins while offering an improved customer experience and higher levels of IT security.
Passkeys replace passwords and allow users to login with Face ID or Touch ID instead of coming up with and remembering complex passwords. They are a form of passwordless authentication.
Passkeys are based on a cryptographic public-private-key pair which is used in two ceremonies:
Registration
During registration the key pair is generated which is verified via the user’s biometrics (e.g. Face ID or Touch ID). The public key is sent to the server and linked to the website / app.Login
To login, the server sends a challenge to the user’s device. Biometrics are used to access the private key which is stored inside the user’s device. The challenge is signed with the private key and sent back to server which verifies the authentication request (so the private key or the biometric data never leaves the device).
Passkeys are a form of “disguised” two-factor authentication (2FA), as the device (first factor) and the user’s biometric verification (second factor) is needed.
To be usable in practice, passkeys can be shared between nearby devices (even from different platforms) by scanning a QR code and using Bluetooth between the two devices.
Moreover, passkeys are synced inside an ecosystem via an iCloud, Google or Microsoft account. Therefore, they are available on all devices using the same account which prevents the repeated creation of a passkey for each device.
Passkeys have cross-device and cross-platform functionality. They can be shared across platform and devices via QR codes and Bluetooth. To login from a friend’s computer you need to have one of your device nearby. Then, you can use Face ID or Touch ID on your smartphone, to complete the authentication process on a computer. Also you can share a passkey with people you trust via Airdrop.
What experts say.
Highest security and convenience.
Best-in-class security
Demonstrate possession of a device and a unique biometric trait. Biometric data never leaves the user's device.
Boost for CX
No need to remember any password and access directly from the browser.
Built on existing infrastructure
No need to purchase new hardware by relying on industry standards pushed by Google, Microsoft and Apple.
Try Corbado now!
Add passwordless logins in <1 hour.
Start for freeNo credit card
No lock-in
1,000 MAUs for free