One of my open source colleagues presented on our current progress with passkeys on Linux!
www.fosdem.org/2026/schedule/event/838A...
Thanks for presenting, Alfie! I'm glad to be working with you. :)
Introducing Passkey Developer Tools!
A new site from passkeys.dev with some tools to help you build, test, and deploy #passkeys!
The existing Feature Detect tool has moved here, and we've added a new tool for Related Origin Requests!
More coming over the next few months!
tools.passkeys.dev
The NCSC would like to see passkeys become the default authentication recommendation
Passkeys provide an easier, faster and more secure way to log into online accounts than passwords.🗝️
Read more about how the NCSC is keeping pace with evolving technology⬇️
www.ncsc.gov.uk/collection/ncsc-annual-r...
New #Drupal module: WebAuthn (Passkey) (2025-11-21) #PHP. See https://www.drupal.org/project/wa
I gave an opening keynote at the FIDO Alliance’s “Authenticate” conference a few weeks ago! My goal was to explain, as clearly as I can, why passkeys are important and how we should use them to reduce the harm that passwords cause. [1/2]
YouTube link: www.youtube.com/watch?v=otOb...
#WebAuthn Client Hints allows workforce and high assurance consumer relying parties to request a more predictable experience for flows such as creating a #passkey on a security key. Learn more here!
Windows Hello does not support synced passkeys today.
yes, that's an implementation of CTAP2. GrapheneOS should implement it natively.
security keys are not the same as passkey providers and do not use the same platform APIs as software authenticators. you'll need to implement CTAP2 to communicate with external authenticators for passkeys.
yes, passkeys are discoverable credentials. there's no such thing as a "non-residential passkey".
Just tested 2 Android 15 devices and I had no issues creating a passkey on a security key.
I recently had a great meetup with @ncsc.gov.uk largely discussing the importance of passkeys. "I should write up a blog post for normal people", I suggested, then went back to my hotel and got phished 🤦♂️ Finally, here's that blog post: www.troyhunt.com/passkeys-for...
74% of consumers are aware of passkeys
69% of consumers have enabled passkeys on at least one of their accounts
More than half of consumers believe passkeys are both more secure (53%) and more convenient (54%) than passwords
fidoalliance.org/wpd-report-2...
Happy World #Passkey Day everyone!
A Yubikey itself isn't a passkey. You can choose to store your passkeys on a Yubikey (or any other FIDO2 security key) or in a credential provider such as Google Password Manager, Bitwarden, Apple Passwords, and many more!
A web page screenshot titled "WebAuthn Features and Capability Detection for Passkeys" for Safari 18. The page lists 14 WebAuthn features related to passkeys, such as "Passkey Platform Authenticator", "Cross-Device Authentication", and "Conditional Get (Autofill UI)". Each feature is marked either "Available" or "Supported". A disclaimer at the bottom states it's a developer resource and not intended for general user information about passkey support.
All green for Safari 18.4 (r215) on macOS!
#passkeys
featuredetect.passkeys.dev
I wrote a book "Everything about passkeys" (in Japanese)
I wrote about how magic links (emailed one-time login links) frustrate me while explaining that they radically accept some fundamental truths. I argue that websites should layer passkeys on top of magic links to provide a seamless authentication experience for everyone. rmondello.com/2025/01/02/m...
New year, new look 🚀
passkeys.dev has been refreshed with some new paint, better performance, cleaner dark mode and mobile views, and improved accessibility!
Happy New Year!
#passkeys
Heya TypeScript + WebAuthn fans, I just published v13 of SimpleWebAuthn! This one includes registration hints support, improved support for attestation trust anchors, and a surprise retirement of the types library (types are in the browser and server libraries now.)
github.com/MasterKale/S...
Chrome 133* is the first WebAuthn client to be all green!
featuredetect.passkeys.dev
#passkeys
(*with some flags enabled)
It took nearly three weeks of refactor and getting more comfortable with how Deno works, but I'm happy to announce that SimpleWebAuthn v12.0.0 is now also available to install from JSR 🎉
jsr.io/@simplewebau...
Check out the release notes for more info:
github.com/MasterKale/S...
"Say Goodbye to Passwords
Passkey adoption is up, and problems are being fixed." www.fastcompany.com/91220674/is-this-the-beg...
getClientCapabilities is now ready for testing in Chrome Canary (enable experimental web platform features)!
This method allows developers to detect features and capabilities for #passkeys before rendering a login page or registration experience.
(screenshot from featuredetect.passkeys.dev)
Here's a list with people who work on and/or talk about #passkeys!
Let us know which other accounts should be added!
@timcappalli.me @rmondello.com @millerti.me @agektmr.com
bsky.app/profile/did:...
You can now try Microsoft’s more modern Windows Hello UI!
#passkeys #windowshello
www.theverge.com/2024/11/1/24...
