Google has officially begun rolling out support for passkeys, the next-generation passwordless login standard, to its stable version of Chrome web browser.
“Passkeys are a significantly safer replacement for passwords and other phishable authentication factors,” the tech giant’s Ali Sarraf said. “They cannot be reused, don’t leak in server breaches, and protect users from phishing attacks.”
The improved security feature, which is available in version 108, comes nearly two months after Google began testing the option across Android, macOS, and Windows 11.
Passkeys obviate the need for passwords by requiring users to authenticate themselves during sign in by unlocking their nearby Android or iOS device using biometrics. This, however, calls for websites to build passkey support on their sites using the WebAuthn API.
Essentially, the technology works by creating a unique cryptographic key pair to associate with an account for the app or website during account registration. One of these keys, the public key, is stored in the server. The private key, on the other hand, never leaves the device in which the keys are generated.
images from Hacker News