Google Introduces Passkey Key‑Login for Android and Chrome: A Secure Alternative to Passwords

Google announced on October 12 that Android and Chrome will officially roll out Passkey key‑login, aiming to replace the long‑standing password authentication.

The Passkey combines biometric verification (fingerprint or facial recognition) with public‑key cryptography, creating a key credential on the Android device.

Once created, the credential can unlock all online accounts on the Android phone and on nearby devices across platforms such as Windows, macOS, iOS, and ChromeOS.

The FIDO‑based solution is an industry standard jointly developed by Microsoft, Apple, and Google, ensuring cross‑platform compatibility.

From Google's perspective, password login is vulnerable to phishing and credential theft, whereas Passkey cannot be reused, does not expose server secrets, and protects users from phishing, forgotten passwords, and even device loss thanks to encrypted cloud backup.

Currently the feature offers two key capabilities:

Users can create and use Passkeys on Android devices, with synchronization via Google Password Manager.

Developers can leverage the WebAuthn API, Android, and other supported platforms through Chrome to add Passkey support to websites.

To add Passkey login to a website, developers need to enroll in the Google Play Services beta and use Chrome Canary.

The next milestone is a native Android app API that will give applications multiple login options, allowing users to choose Passkey or a saved password.

看完本文有收获？点赞、分享是最大的支持！