The FIDO Alliance 2024 design guidelines for passkeys outline best practices distilled from user experience research across various organizations. The guidelines present eight updated and six new design patterns to enhance user engagement and streamline passkey creation, particularly during account-related interactions. Key insights emphasize prompts for passkey creation following SMS OTP sign-ins and the removal of outdated authentication methods.

1. © FIDO Alliance 2024 Confidential
1 © FIDO Alliance 2024 Confidential
1
2024 Design
Guidelines for
Passkeys

2. © FIDO Alliance 2024 Confidential
2 © FIDO Alliance 2024 Confidential
2
Kevin Goldman Philip Corriveau
Chief Experience Officer, Trusona
Chair, UX Working Group, FIDO
Alliance
Senior Manager User Experience, RSA
UX Research Lead, FIDO Alliance UX
Working Group

3. © FIDO Alliance 2024 Confidential
3
Team and approach

4. © FIDO Alliance 2024 Confidential
4
FIDO Alliance UX Working Group
AgileBits, American Express, Apple, ASSA ABLOY, Axiad, Beyond
Identity, Bitwarden, BlinkUX, CVS Health, Daon, Dashlane, Docusign,
Duo, eBay, FIME SAS, Google, Guangdong, Huawei, IBM, Idemia,
Intuit, JP Morgan Chase, Keeper Security, LastPass, Lenovo, Liaison,
Mastercard, Mercari, Meta, Microsoft, Nok Nok, Okta, OneSpan,
PayPal, RSA, Samsung, Sony, Swissbit, Target, TTA, TikTok, Trusona,
U.S. Bank, VinCSS, Visa, Wells Fargo, Yubico
Third party UX research firm: Blink
FIDO Alliance member underwriters:

5. © FIDO Alliance 2024 Confidential
5
How FIDO produces Design Guidelines
Curated
270 passkey
touchpoints
documented
Grouped
7 themes
identified
Selected
6 design patterns
to pursue in 2024
Built
prototypes and
ideated
experiences
Tested
with a third party
UX research firm
and real users
Publish
14 total patterns
that drive
business
outcomes
… 6x
repeat …
Consumer use case (unregulated), 16 U.S. consumers, iOS,
Android, Windows, 8 service providers
Audited
8 well-known
passkey
deployments

6. © FIDO Alliance 2024 Confidential
6
Guidelines

7. © FIDO Alliance 2024 Confidential
7
What’s included?

8. © FIDO Alliance 2024 Confidential
8
👀 Let’s look at one pattern …

9. © FIDO Alliance 2024 Confidential
9

10. © FIDO Alliance 2024 Confidential
10
One of many key insights …
2023 Guidelines 2024 Guidelines
Plus
Prompt to create passkeys at
account related moments.
Prompt to create passkeys
after SMS OTP sign ins

11. © FIDO Alliance 2024 Confidential
11
All the Design Guidelines
8 updated patterns 6 new patterns New community resources
Communications
Cross-device
sign-in
Deprecate SMS
OTP
Mobile app Remove
Synced and
device-bound

12. © FIDO Alliance 2024 Confidential
12 © FIDO Alliance 2024 Confidential
12
Get all the guidelines!
fidoalliance.org/newsletter-sign-up
Identiverse May 28th
@fidoalliance

13. © FIDO Alliance 2024 Confidential
13
Get started with
passkeys!

14. © FIDO Alliance 2024 Confidential
14
● Contact a vendor
● Subscribe to FIDO-dev
● Attend Authenticate
● You’re already here …
● Create a proof of concept
● Build a branded prototype
Get involved Leverage guidelines Continue the journey

15. © FIDO Alliance 2024 Confidential
15 © FIDO Alliance 2024 Confidential
15
Q&A

16. © FIDO Alliance 2024 Confidential
16 © FIDO Alliance 2024 Confidential
16
Thank you!