GitHub has gone passwordless with the introduction of passkey authentication. The new system promises to offer a secure, privacy-preserving, and easy-to-use method to protect user accounts.
For using passkeys with your GitHub account, users should navigate to your ‘Settings’ sidebar and go to the ‘Feature Preview’’ tab. Here, click ‘enable passkeys’ to enable the passkeys. It will upgrade security keys to passkeys and will register new passkeys.
For understanding this passwordless authentication, you need to understand the Passkeys. Passkeys are a form of passwordless user authentication for websites and apps, that is designed to provide a high level of security by leveraging public key infrastructure. In the authentication process, the public key is sent to the server, while the private key is stored in the user’s device. To verify the user’s identity, users can use biometric data, such as a fingerprint or facial recognition, instead of relying on a user-generated password.
Passkey combines user elements such as fingerprint, face, or knowledge of a PIN, with a physical element such as a device. In modern browsers, the autofill system can automatically suggest that users use their passkey to sign in straight from the login page. Passkeys can also be used across multiple devices by using ‘Cross-Device Authentication.’
Multiple passkeys can also be synced across multiple devices to prevent account lock-out due to key loss.
Related Posts
