Matt's Headroom

Presenting Prettier Passkeys (for RPs) @ Authenticate 2025

- 1 minute read


“Title slide from the presentation deck”

# Description

Supporting passkeys for auth is more than just accepting public keys and verifying signatures. Relying Parties are also responsible for helping users keep track of where their passkeys are, managing their collection of registered passkeys, and doing what they can to help passkey providers on the other end keep track of passkeys the RP will recognize. The good news? The FIDO Alliance and WebAuthn offer tools to Relying Parties orchestrate all this. From FIDO Convenience MDS to the Signals APIs, come see how you can offer your users a better passkeys management experience. And maybe even call out some antipatterns out in the wild…