Arpana Dhaka, profile picture
Uploaded byArpana Dhaka
PPTX, PDF157 views

passkey.pptx

The document explains the concept of passkeys as a safer and more convenient alternative to traditional passwords, utilizing public-key cryptography for authentication. It details how passkeys work, their advantages over passwords, recovery processes, and various use cases, including login options, reauthentication, possession-based authentication, and cross-platform interoperability. Additionally, it highlights the transition towards passwordless authentication and promotes MojoAuth as a solution for implementing secure, password-free systems.

Software
Related topics:
Information Security

Embed presentation

Downloaded 16 times
● What is Passkey? ● Passwords vs Passkeys ● How Passkeys are Safer than Passwords? ● How does Passkey Authentication Work? ● Passwordless Authentication with Passkeys ● How to Recover the Passkey? ● What are the Use Cases of Passkeys? Table of contents
What is Passkey? Passkeys work on straightforward identity verifications, like fingerprint scans, facial recognition, PIN, or swipe patterns. Passkey authentication is safer and easy to use for users compared to password-based authentication. Also, here is a dedicated blog on passkeys that talks about their basics, benefits, working, and configuration. Now that you have a basic understanding of passkeys, let’s discuss how it differs from a typical password, passkey authentication workflow, and some examples of how they could be used.
Passwords vs Passkeys
How Passkeys are Safer than Passwords? Passkeys are way safer and more convenient than passwords when put on a comparison scale. Passkey technology uses two cryptographic keys, one of which is stored in the application server and the other in a secure wallet. During the passkey-based authentication process, the application verifies the login using the public key that is stored on the server as long as users have the matching private key. Authentication is either accepted or rejected, depending on whether the match is verified. ● Passwords are generated by users and prone to attacks like credential stuffing, phishing, dictionary password attacks, etc. ● Passkeys are system generated and safe against common password-based attacks. In case when a hacker gets unauthorized access to the server, public keys alone won’t have any purpose because the private key is stored in a secure wallet and is never divulged. This public-key cryptography process reduces the likelihood of security breaches or password- based attacks targeting password servers or databases.
How does Passkey Authentication Work?
Passwordless Authentication with Passkeys Passkey is a passwordless authentication system built on cryptography that enables web applications to use registered devices (mobile phones, tablets, smart cards, etc.) as authentication factors, thereby streamlining and securing user authentication. As a result of this new standard, any web application can now use these authenticators to securely authenticate users when running in a browser that supports WebAuthn. In addition, implementing passwordless authentication with passkeys results in: ● Preventing password-based attacks like phishing and credential stuffing ● Eliminating password management costs ● Improving user experience
How to Recover the Passkey? In case of unavoidable situations like losing a device that was originally used for setting up a passkey, users can easily reset passkeys for their new device. For instance, if the user has configured pattern or fingerprint-based authentication on their old device that is lost, they can easily reset passkey for the specific application on any new device. However, users must have access to secure wallet where the private key was stored. Following are the steps to reset the passkey: ● User should open the passkey-enabled application, navigate ahead for settings and search for the passkey reset option. ● Next, the user should confirm identity by completing a verification for a passkey reset. ● Then, follow the on-screen instructions to set a new passkey for their new device.
What are the Use Cases of Passkeys? 1. Embedding passkey-based login options When an application has a Login with passkey feature enabled on its login page, users can quickly select an account associated with it and then carry out simple verification procedures, just as unlocking the screen or performing biometric scanning to log in. Such user-friendly procedures, which users are already accustomed to in their daily lives, empower users to undergo seamless authentication experiences instead of filling in the typical login boxes, as with password- based authentications. 2. Reauthentication factor Reauthentication has become common practice for the application ensuring security while performing sensitive actions. Passkeys can be effectively used as a reauthentication factor that adds an extra degree of security to the ongoing process. For instance, if the user is already signed in to a transaction app, the app still requests another authentication (passkey) before doing a critical operation like transferring money or updating account details.
Cont.. 3. Possession-based authentication Passkeys authenticate users with their possessions like mobile phones, USBs, and smartcards, which makes the process more convenient and quick compared to password- based authentication. With passkeys, user credentials can be verified using either an in- built authenticator (biometric device), an external or roaming authenticator (mobile phones), or an authenticator that is plugged in (USB or smartcard). 4. Cross-platform interoperability Passkey technology possesses cross- platform interoperability features, which allow a passkey on one device to sign into any nearby device, irrespective of the operating system or device. For instance, the Chrome application on a computer can be authenticated using a passkey stored on an Android device, and vice versa. As long as the Android device is near the computer, the user can approve the authentication on the phone with just a single touch or tap.
Wrapping Up! Passwordless authentication has already begun making a great change toward a secure future free from password-based cyber attacks and hacking while ensuring a smooth user experience. It is apparent that the Passwordless initiative offers a variety of secure techniques to authenticate, including passkeys, to circumvent cyberattacks.
Thank You! Are you looking to go passwordless? Well, MojoAuth enables you to design a password-free authentication solution that any enterprise can utilize to streamline the authentication process and lower client security concerns. Visit https://mojoauth.com/ for more information.

More Related Content

PPTX
IBM: Hey FIDO, Meet Passkey!.pptx
byFIDO Alliance
 
PPT
Presentation sso design_security
byMarco Morana
 
PPTX
Mobile security
byTapan Khilar
 
PDF
FIDO U2F Specifications: Overview & Tutorial
byFIDO Alliance
 
PDF
penetration test using Kali linux ppt
byAbhayNaik8
 
PDF
Cyber security training
byWilmington University
 
PDF
Talking About SSRF,CRLF
byn|u - The Open Security Community
 
PDF
「開けゴマ!」からYubiKeyへ
byFIDO Alliance
 
IBM: Hey FIDO, Meet Passkey!.pptx
byFIDO Alliance
 
Presentation sso design_security
byMarco Morana
 
Mobile security
byTapan Khilar
 
FIDO U2F Specifications: Overview & Tutorial
byFIDO Alliance
 
penetration test using Kali linux ppt
byAbhayNaik8
 
Cyber security training
byWilmington University
 
Talking About SSRF,CRLF
byn|u - The Open Security Community
 
「開けゴマ!」からYubiKeyへ
byFIDO Alliance
 

What's hot

PDF
Future-proofing Authentication with Passkeys
byNordic APIs
 
PPTX
Two Factor Authentication: Easy Setup, Major Impact
bySalesforce Admins
 
PDF
Passwordless Authentication
byEnterprise Management Associates
 
PPTX
4_Session 1- Universal ZTNA.pptx
byaungyekhant1
 
PPTX
Digital signature & PKI Infrastructure
byShubham Sharma
 
DOCX
Security policy case study
byashu6
 
PPTX
Useridentity 150909123719-lva1-app6891
byLan & Wan Solutions
 
PPTX
Palo alto NGfw2023.pptx
byahmad661583
 
PDF
Oracle Cloud Infrastructure:2021年11月度サービス・アップデート
byオラクルエンジニア通信
 
PDF
Vpn ppt
byNikhila Pothukuchi
 
PDF
Network Access Control (NAC)
byForescout Technologies Inc
 
PPTX
Cyber Security Awareness Program.pptx
byDinesh582831
 
PPTX
Android Device Hardening
byanupriti
 
PPTX
Cyber security
byZwebaButt
 
PDF
Microsoft's Path to Passwordless - FIDO Authentication for Windows & Azure Ac...
byFIDO Alliance
 
PPTX
Windows 10 IoT Coreの脅威分析と実施すべきセキュリティ対策 by 和栗直英 - CODE BLUE 2015
byCODE BLUE
 
PPT
Network Security
byRaymond Jose
 
PDF
Navigating the Attention Economy – Using MITRE ATT&CK to Communicate to Stake...
byMITRE ATT&CK
 
PPT
Cyber Security Awareness Training by Win-Pro
byRonald Soh
 
PPTX
It security and awareness training 5 10-2018
byjubke
 
Future-proofing Authentication with Passkeys
byNordic APIs
 
Two Factor Authentication: Easy Setup, Major Impact
bySalesforce Admins
 
Passwordless Authentication
byEnterprise Management Associates
 
4_Session 1- Universal ZTNA.pptx
byaungyekhant1
 
Digital signature & PKI Infrastructure
byShubham Sharma
 
Security policy case study
byashu6
 
Useridentity 150909123719-lva1-app6891
byLan & Wan Solutions
 
Palo alto NGfw2023.pptx
byahmad661583
 
Oracle Cloud Infrastructure:2021年11月度サービス・アップデート
byオラクルエンジニア通信
 
Vpn ppt
byNikhila Pothukuchi
 
Network Access Control (NAC)
byForescout Technologies Inc
 
Cyber Security Awareness Program.pptx
byDinesh582831
 
Android Device Hardening
byanupriti
 
Cyber security
byZwebaButt
 
Microsoft's Path to Passwordless - FIDO Authentication for Windows & Azure Ac...
byFIDO Alliance
 
Windows 10 IoT Coreの脅威分析と実施すべきセキュリティ対策 by 和栗直英 - CODE BLUE 2015
byCODE BLUE
 
Network Security
byRaymond Jose
 
Navigating the Attention Economy – Using MITRE ATT&CK to Communicate to Stake...
byMITRE ATT&CK
 
Cyber Security Awareness Training by Win-Pro
byRonald Soh
 
It security and awareness training 5 10-2018
byjubke
 

Similar to passkey.pptx

PPTX
Introduction to FIDO Authentication and Passkeys.pptx
byFIDO Alliance
 
PPTX
Intro to Passkeys and the State of Passwordless.pptx
byFIDO Alliance
 
PPTX
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
byLoriGlavin3
 
PPTX
FIDO Alliance Seminar State of Passkeys.pptx
byFIDO Alliance
 
PDF
Passkeys Authentication Made Easy with LoginRadius
byKevin Mathew
 
PDF
Passkeys Login Authentication by LoginRadius
byKevin Mathew
 
PDF
LoginRadius Passkeys: The Future of Passwordless Authentication
byKevin Mathew
 
PPTX
UX Webinar Series: Drive Revenue and Decrease Costs with Passkeys for Consume...
byFIDO Alliance
 
PDF
Passkeys are Here - Now What? - Introduction
bydtpentest
 
PDF
How Passwordless Authentication Reduces Risks of Data Breaches.pdf
byensuritytech1
 
PPTX
UX Webinar Series: Essentials for Adopting Passkeys as the Foundation of your...
byFIDO Alliance
 
PDF
Everything_You_Never_Knew_You_Wanted_to_Know_About_Passkeys.pdf
bydtpentest
 
PDF
WP Passkey: Passwordless Authentication on WordPress
byWordPress
 
PDF
Mobile authentication
byHai Nguyen
 
PDF
Experience Secure Login with Passkeys by LoginRadius
byKevin Mathew
 
PDF
LoginRadius Introduces Passkeys: The Future Beyond Passwords
byKevin Mathew
 
PDF
Secure Authentication Passkeys by LoginRadius
byKevin Mathew
 
PDF
LoginRadius Passkeys: Revolutionizing Digital Security
byKevin Mathew
 
PDF
Unlocking Security: How Passkeys by LoginRadius Enhance User Authentication
byKevin Mathew
 
PPTX
UX Webinar Series: Aligning Authentication Experiences with Business Goals
byFIDO Alliance
 
Introduction to FIDO Authentication and Passkeys.pptx
byFIDO Alliance
 
Intro to Passkeys and the State of Passwordless.pptx
byFIDO Alliance
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
byLoriGlavin3
 
FIDO Alliance Seminar State of Passkeys.pptx
byFIDO Alliance
 
Passkeys Authentication Made Easy with LoginRadius
byKevin Mathew
 
Passkeys Login Authentication by LoginRadius
byKevin Mathew
 
LoginRadius Passkeys: The Future of Passwordless Authentication
byKevin Mathew
 
UX Webinar Series: Drive Revenue and Decrease Costs with Passkeys for Consume...
byFIDO Alliance
 
Passkeys are Here - Now What? - Introduction
bydtpentest
 
How Passwordless Authentication Reduces Risks of Data Breaches.pdf
byensuritytech1
 
UX Webinar Series: Essentials for Adopting Passkeys as the Foundation of your...
byFIDO Alliance
 
Everything_You_Never_Knew_You_Wanted_to_Know_About_Passkeys.pdf
bydtpentest
 
WP Passkey: Passwordless Authentication on WordPress
byWordPress
 
Mobile authentication
byHai Nguyen
 
Experience Secure Login with Passkeys by LoginRadius
byKevin Mathew
 
LoginRadius Introduces Passkeys: The Future Beyond Passwords
byKevin Mathew
 
Secure Authentication Passkeys by LoginRadius
byKevin Mathew
 
LoginRadius Passkeys: Revolutionizing Digital Security
byKevin Mathew
 
Unlocking Security: How Passkeys by LoginRadius Enhance User Authentication
byKevin Mathew
 
UX Webinar Series: Aligning Authentication Experiences with Business Goals
byFIDO Alliance
 

Recently uploaded

PPTX
Future of Software Testing: AI-Powered Open Source Testing Tools
bySophie Lane
 
PDF
IAAM Meetup #7 chez Onepoint - Construire un Rag-as-a-service en production. ...
byiaaixmarseille
 
PDF
Breaking the Vulnerability Management Cycle with Anchore and Echo
byAnchore
 
PDF
Data Integration with Salesforce Bootcamp
byDele Amefo
 
PDF
inSis suite - Laboratory Information Management System
byKondapi V Siva Rama Brahmam
 
PDF
Everything You Ever Wanted to Know About Quarkus and LangChain4j
byMarkus Eisele
 
PDF
Presentation Empowerment Technology in ICT
byoryoseiii
 
PDF
Microservices Architecture Benefits For Mobile Development.pdf
bydavidjohansen1597
 
PPTX
The Sync Strikes Back: Tales from the MOPs Trenches
bybbedford2
 
PPTX
operating sys about shells and terminals commands .pptx
byYazeedAbdullah6
 
PDF
Fundamental of Information Systems introduction.pdf
byYeabsraLakew
 
PPTX
Presentation on AWS Cloud RDS Deep dive
byBimal Jain
 
PDF
DSD-INT 2025 Delft3D FM Suite 2026.01 2D3D - New features + Improvements - Sp...
byDeltares
 
PDF
DSD-INT 2025 Reviving a Lost Meander - Deen
byDeltares
 
PDF
DSD-INT 2025 3D-modelling of salt intrusion into Germany’s busiest waterway -...
byDeltares
 
PDF
DSD-INT 2025 UK Coastal Flooding Incident Guide - Dam
byDeltares
 
PDF
DSD-INT 2025 The Sinterklaas Storm in the Southwest of the Netherlands - Wope...
byDeltares
 
PDF
DSD-INT 2025 Advancing Urban Flood Modeling with Delft3D FM 1D2D - A Pilot St...
byDeltares
 
PDF
DSD-INT 2025 Quantifying Flood Mitigation Strategies Under Sea Level Rise - H...
byDeltares
 
PDF
DSD-INT 2025 Understanding the Paraguay River Response to Hard Bottom Dredgin...
byDeltares
 
Future of Software Testing: AI-Powered Open Source Testing Tools
bySophie Lane
 
IAAM Meetup #7 chez Onepoint - Construire un Rag-as-a-service en production. ...
byiaaixmarseille
 
Breaking the Vulnerability Management Cycle with Anchore and Echo
byAnchore
 
Data Integration with Salesforce Bootcamp
byDele Amefo
 
inSis suite - Laboratory Information Management System
byKondapi V Siva Rama Brahmam
 
Everything You Ever Wanted to Know About Quarkus and LangChain4j
byMarkus Eisele
 
Presentation Empowerment Technology in ICT
byoryoseiii
 
Microservices Architecture Benefits For Mobile Development.pdf
bydavidjohansen1597
 
The Sync Strikes Back: Tales from the MOPs Trenches
bybbedford2
 
operating sys about shells and terminals commands .pptx
byYazeedAbdullah6
 
Fundamental of Information Systems introduction.pdf
byYeabsraLakew
 
Presentation on AWS Cloud RDS Deep dive
byBimal Jain
 
DSD-INT 2025 Delft3D FM Suite 2026.01 2D3D - New features + Improvements - Sp...
byDeltares
 
DSD-INT 2025 Reviving a Lost Meander - Deen
byDeltares
 
DSD-INT 2025 3D-modelling of salt intrusion into Germany’s busiest waterway -...
byDeltares
 
DSD-INT 2025 UK Coastal Flooding Incident Guide - Dam
byDeltares
 
DSD-INT 2025 The Sinterklaas Storm in the Southwest of the Netherlands - Wope...
byDeltares
 
DSD-INT 2025 Advancing Urban Flood Modeling with Delft3D FM 1D2D - A Pilot St...
byDeltares
 
DSD-INT 2025 Quantifying Flood Mitigation Strategies Under Sea Level Rise - H...
byDeltares
 
DSD-INT 2025 Understanding the Paraguay River Response to Hard Bottom Dredgin...
byDeltares
 

passkey.pptx

  • 2.
    ● What isPasskey? ● Passwords vs Passkeys ● How Passkeys are Safer than Passwords? ● How does Passkey Authentication Work? ● Passwordless Authentication with Passkeys ● How to Recover the Passkey? ● What are the Use Cases of Passkeys? Table of contents
  • 3.
    What is Passkey? Passkeyswork on straightforward identity verifications, like fingerprint scans, facial recognition, PIN, or swipe patterns. Passkey authentication is safer and easy to use for users compared to password-based authentication. Also, here is a dedicated blog on passkeys that talks about their basics, benefits, working, and configuration. Now that you have a basic understanding of passkeys, let’s discuss how it differs from a typical password, passkey authentication workflow, and some examples of how they could be used.
  • 4.
  • 5.
    How Passkeys areSafer than Passwords? Passkeys are way safer and more convenient than passwords when put on a comparison scale. Passkey technology uses two cryptographic keys, one of which is stored in the application server and the other in a secure wallet. During the passkey-based authentication process, the application verifies the login using the public key that is stored on the server as long as users have the matching private key. Authentication is either accepted or rejected, depending on whether the match is verified. ● Passwords are generated by users and prone to attacks like credential stuffing, phishing, dictionary password attacks, etc. ● Passkeys are system generated and safe against common password-based attacks. In case when a hacker gets unauthorized access to the server, public keys alone won’t have any purpose because the private key is stored in a secure wallet and is never divulged. This public-key cryptography process reduces the likelihood of security breaches or password- based attacks targeting password servers or databases.
  • 6.
    How does PasskeyAuthentication Work?
  • 7.
    Passwordless Authentication withPasskeys Passkey is a passwordless authentication system built on cryptography that enables web applications to use registered devices (mobile phones, tablets, smart cards, etc.) as authentication factors, thereby streamlining and securing user authentication. As a result of this new standard, any web application can now use these authenticators to securely authenticate users when running in a browser that supports WebAuthn. In addition, implementing passwordless authentication with passkeys results in: ● Preventing password-based attacks like phishing and credential stuffing ● Eliminating password management costs ● Improving user experience
  • 8.
    How to Recoverthe Passkey? In case of unavoidable situations like losing a device that was originally used for setting up a passkey, users can easily reset passkeys for their new device. For instance, if the user has configured pattern or fingerprint-based authentication on their old device that is lost, they can easily reset passkey for the specific application on any new device. However, users must have access to secure wallet where the private key was stored. Following are the steps to reset the passkey: ● User should open the passkey-enabled application, navigate ahead for settings and search for the passkey reset option. ● Next, the user should confirm identity by completing a verification for a passkey reset. ● Then, follow the on-screen instructions to set a new passkey for their new device.
  • 9.
    What are theUse Cases of Passkeys? 1. Embedding passkey-based login options When an application has a Login with passkey feature enabled on its login page, users can quickly select an account associated with it and then carry out simple verification procedures, just as unlocking the screen or performing biometric scanning to log in. Such user-friendly procedures, which users are already accustomed to in their daily lives, empower users to undergo seamless authentication experiences instead of filling in the typical login boxes, as with password- based authentications. 2. Reauthentication factor Reauthentication has become common practice for the application ensuring security while performing sensitive actions. Passkeys can be effectively used as a reauthentication factor that adds an extra degree of security to the ongoing process. For instance, if the user is already signed in to a transaction app, the app still requests another authentication (passkey) before doing a critical operation like transferring money or updating account details.
  • 10.
    Cont.. 3. Possession-based authentication Passkeysauthenticate users with their possessions like mobile phones, USBs, and smartcards, which makes the process more convenient and quick compared to password- based authentication. With passkeys, user credentials can be verified using either an in- built authenticator (biometric device), an external or roaming authenticator (mobile phones), or an authenticator that is plugged in (USB or smartcard). 4. Cross-platform interoperability Passkey technology possesses cross- platform interoperability features, which allow a passkey on one device to sign into any nearby device, irrespective of the operating system or device. For instance, the Chrome application on a computer can be authenticated using a passkey stored on an Android device, and vice versa. As long as the Android device is near the computer, the user can approve the authentication on the phone with just a single touch or tap.
  • 11.
    Wrapping Up! Passwordless authenticationhas already begun making a great change toward a secure future free from password-based cyber attacks and hacking while ensuring a smooth user experience. It is apparent that the Passwordless initiative offers a variety of secure techniques to authenticate, including passkeys, to circumvent cyberattacks.
  • 12.
    Thank You! Are youlooking to go passwordless? Well, MojoAuth enables you to design a password-free authentication solution that any enterprise can utilize to streamline the authentication process and lower client security concerns. Visit https://mojoauth.com/ for more information.