all InfoSec news
Passkey Authentication with Rodauth
DEV Community dev.to
Passkeys are a modern alternative to passwords, where the user's device performs the authentication, usually requiring some form of user verification (biometric identification, PIN). Passkeys are built on top of WebAuthn specification, which is based on public-key cryptography. Keypairs are created for each website, and the public key is sent to the server, while the private key is securely stored on the device. This makes passkeys:
- stronger than any password
- safe from data breaches
- safe from phishing attacks
WebAuthn credentials …
authentication biometric biometric identification cryptography device identification key passkey passkeys passwords pin private public public key public-key cryptography rails ruby server user verification verification webauthn webdev website