How to Create and Use Sign in with Passkey option for Google Accounts

Passwords are often the first line of defense when it comes to securing online accounts. However, the use of passwords is becoming increasingly inadequate as cybercriminals become more sophisticated in their hacking techniques. To address this problem, tech companies are exploring alternative authentication methods such as passkeys. In this guide, we’ll explore what passkeys are, how they work, and how to create and use them.

What are Passkeys?

Passkeys are digital credentials that are tied to a user account and a website or application. Passkeys allow users to authenticate without having to enter a username, password, or provide any additional authentication factor. This technology aims to replace legacy authentication mechanisms such as passwords.

What is Sign in with Passkey for Google accounts?

Google has introduced a new way to log in to Google accounts called “Sign in with Passkey.” Passkeys are digital credentials that are linked to a user’s account and a website or application. They allow users to authenticate without having to enter a username, password, or any additional authentication factor. Passkeys are intended to replace traditional authentication methods such as passwords, making the login process more secure and user-friendly.

How do Passkeys Work?

To use passkeys, users must have an operating system infrastructure that allows passkey managers to create, backup, and make passkeys available to the applications running on that operating system. Passkeys are built on FIDO standards, which means that all browsers can adopt them. On Chrome on Android, passkeys are stored in the Google Password Manager, which synchronizes passkeys between the user’s Android devices that are signed into the same Google account.

When a user wants to sign in to a service that uses passkeys, their browser or operating system will help them select and use the right passkey. The experience is similar to how saved passwords work today. To make sure only the rightful owner can use a passkey, the system will ask them to unlock their device. This may be performed with a biometric sensor (such as a fingerprint or facial recognition), PIN, or pattern.

Creating and Using Passkeys for Google

To create a passkey for a Google account, users can follow the following steps:

1. First, they must sign in to their Google account using their existing sign-in method.
2. Next, click on the “Create a Passkey” button and use their device’s screen unlock (such as a fingerprint or facial recognition) to create the passkey.
3. The passkey will be stored securely in the user’s device and can be used to sign in to Google accounts on any device.
4. When a user wants to sign in to a service that uses passkeys, their browser or operating system will help them select and use the right passkey. To ensure security, the system will ask the user to unlock their device using their biometric sensor, PIN, or pattern before allowing access.

Google is rolling out passkey support for Google accounts gradually. While it hopes that passkeys will replace passwords in the future, for now, users can still use passwords and two-step verification (2SV). Google states that passkeys are more secure than passwords and SMS one-time codes because they are more resistant to threats like phishing.

How to login to a website using Passkey for Google:

When the user returns to the website or app to sign in, they can follow these steps:

1. Go to the website or application.
2. Click on “Sign in.”
3. Select their passkey.
4. Use the device screen unlock to complete the login.

The user’s device generates a signature based on the passkey. This signature is used to verify the login credential between the origin and the passkey. A user can sign into services on any device using a passkey, regardless of where the passkey is stored. For example, a passkey created on a mobile phone can be used to sign in to a website on a separate laptop.

In conclusion, passkeys are a more secure way to authenticate than traditional passwords. They are resistant to threats like phishing, making them a more reliable authentication method. With more tech giants and organizations exploring alternatives to passwords, it is likely that passkeys will become a standard method of authentication in the years to come. Follow these simple steps to create and use passkeys and enjoy a safer online experience.