Latest news on passkeys

At the latest WWDC, Apple introduced several updates regarding passkeys, emphasizing their role as a secure and user-friendly alternative to traditional passwords. Passkeys are designed to be more secure and resistant to phishing attacks. They offer a seamless sign-in experience, eliminating the need for multiple steps typically associated with password-based authentication.

Key updates include:

1. Automatic Passkey Upgrades: Apps can now automatically upgrade existing accounts to use passkeys during sign-in, without requiring users to adjust their login flow. This feature is available in iOS 18 and macOS, making it easier for users to transition from passwords to passkeys.

2. Credential Managers: Credential managers can now participate in automatic passkey upgrades and fill time-based verification codes, usernames, passwords, or one-time codes into any text field. This enhances the security posture beyond common multi-factor sign-in methods.

3. New Registration API: A new API allows for the automatic creation of passkeys for eligible users the next time they sign into an app, streamlining the transition to passkeys and improving account security.

For more detailed information, you can refer to the session Streamline sign-in with passkey upgrades and credential managers (00:38) and What’s new in privacy (20:46).