Google has announced that it is rolling out a passwordless secure sign-in with passkeys for Google Accounts across all platforms. The company believes that despite the implementation of defenses like two-step verification and password managers, it is still necessary to adopt passwordless solutions to address password issues.
Passkeys are resistant to online attacks like phishing and are stored only on the users’ devices, making them more secure than SMS one-time codes or passwords. Users can sign in to apps and sites using fingerprint, face scan, or screen lock PIN.
Google has been working on supporting passkeys on its platform to replace passwords since 2022. Passkeys can be synced to the cloud securely, allowing users to replace the device used to generate them. If Apple users create a passkey on their iPhone, they can use it on any other devices signed into the same iCloud account.
Passkeys protect against phishing and any accidental mishandling of passwords that can lead to data breaches or reuse.
Google will maintain other signing-in options for users who don’t have access to their devices. Passkeys make it easier for users to upgrade from one device to another or sign into a new device for the first time.
If a new device supports storing its own passkeys, users will be asked separately if they want to create one there. Passkeys offer stronger protection than most two-step verification (2FA/MFA) methods, and users can skip not only the password but also 2SV when they use a passkey.
Services like Docusign, Kayak, PayPal, Shopify, and Yahoo! Japan have already deployed passkeys to streamline sign-in for their users. Starting now, passkeys will be available as an option for Google Account users who want to try a passwordless sign-in experience.
Passkeys are an innovative and secure way of accessing online services without having to remember complex passwords, which are prone to being hacked or compromised.
