Guide · 4 min read

What is a passkey?

A passkey is a login that replaces your password with the thing you already use to unlock your phone — your face or your fingerprint. It can't be guessed, reused, or phished.

How it actually works

When you create a passkey, your device generates a pair of cryptographic keys. The private key never leaves your device — it's protected by your biometric. The public key is the only thing the website stores. To sign in, your device proves it holds the private key without ever sending it. There's no shared secret to steal.

Your biometric

Unlocks the private key

→

Private key

Stays on device, always

→

Public key

All the site ever stores

Why it's safer than a password

✓

Nothing to phish

A passkey is bound to the real site. Paste it on a fake one and it simply won't work.

✓

Nothing to leak

There's no password database. A breach of the website exposes only useless public keys.

✓

Nothing to remember

No resets, no manager, no reuse across sites. A glance or a touch and you're in.

Common questions

What if I lose my phone?

Passkeys sync through iCloud Keychain or Google, so a new device restores them. Paswad also lets you register several devices and keep one-time backup codes — and for verified accounts, re-confirm your identity to issue a fresh key.

Do passkeys work across browsers and devices?

Yes. Passkeys are an open standard (FIDO2 / WebAuthn) supported by Apple, Google, Microsoft, and every major browser.

Can a passkey approve a payment, not just a login?

Yes — the same passkey can cryptographically sign a specific transaction. Paswad emails you the details every time, so you always know what your key approved.

Try it in under a minute.

Create your first passkey — no password, no card.

Get Paswad — free