PayPal Holdings Inc.’s next step in payment security is to replace passwords with passkeys, an authentication technology that could eliminate many security and practical issues for consumers and organizations alike.
PayPal said it is adding the passkey technology—it uses cryptographic keys to identify devices and was developed by the FIDO Alliance and the World Wide Web consortium—to PayPal.com on iPhone, iPad, and Mac devices made by Apple Inc., with support for more platforms to come. The FIDO Alliance, a Wakefield, Mass.-based nonprofit, helped developed passkeys to reduce use of password-based authentication.
Passkeys, the alliance says, are resistant to phishing, reliably strong, and are designed so there are no shared secrets. Google also supports passkeys in its Android operating system, and Microsoft Corp. intends to support the technology in 2023.
Many consumers will give up trying to access an online service if they can’t recall a password. In the United States, only 42% of respondents in a recent FIDO Alliance survey said they never gave up accessing an online service after failed attempts to recall their passwords.
PayPal says its passkeys, once created, are synced with Apple’s iCloud Keychain, a secure credential-storage service, to help make them easier to use on iOS16, iPadOS 16.1, and macOS Ventura devices.