Image credit: Silmnhyt via Pixabay
GitHub announcted that Passkey authentication is now accessible to all users. Following in the footsteps of industry leaders like TikTok and Google, GitHub is shifting away from traditional passwords in favor of Passkeys, which offer superior protection.
Moving Out of Beta Phase
Passkey authentication allows users to sign in using biometrics or facial recognition, eliminating the need for passwords. Developed in collaboration with tech giants like Apple, Google, and Microsoft, this technology has now transitioned from its beta phase to general availability on GitHub.
To embrace Passkey authentication, users can simply navigate to their account security settings and select “Add a passkey.” For those with hardware security keys, GitHub offers an option to upgrade to this more secure method. However, it’s important to note that platforms like Linux and Firefox do not yet support Passkeys. GitHub has addressed this limitation by enabling cross-device registration, allowing users to register their Passkey on a different device, such as their smartphone.
This move aligns with GitHub’s commitment to enforcing Two-Factor Authentication (2FA) on all accounts by 2023. Users will now be prompted to add a Passkey when logging in from compatible devices, enhancing account security.
Parent Company, Microsoft, On the Same Page
Microsoft has also joined the passwordless era by announcing OS-wide Passkey support, ensuring users can set up Passkeys regardless of their web browser. Additionally, 1Password has integrated Passkey support into its iOS app, reinforcing the industry’s consensus on the value of passwordless authentication.
Passkeys are device-specific, reducing the effectiveness of phishing attacks and thwarting unauthorized access attempts. Moreover, they simplify the user experience by eliminating the need for multiple passwords across various websites and applications.
GitHub’s Staff Product Manager, Hirsch Singhal, highlighted the importance of this development. He explained that the recent development shows their commitment to securing all contributors with 2FA — a goal they hope to realize by the end of 2023. This 2FA will improve security on Github without affecting user experience.