NCSC passkey login guidance shift
Public Sector Action
Summary
Hide ▲
Show ▼
The UK National Cyber Security Centre (NCSC) has backed passkeys as the first choice of login and stopped recommending passwords except where passkeys are unavailable, changing official authentication guidance for consumers and businesses. The policy shift makes passkeys the default option for services that support them and pushes organizations toward stronger sign-in methods. It follows about 12 months of ecosystem progress, including work with the FIDO Alliance and reported success using passkeys in the NHS. The NCSC also signaled that further guidance for business users may follow.
Related Happenings
OpenAI rolls out ChatGPT Lockdown Mode and Active Sessions for prompt-injection defense and sign-in auditing
Security Tool/Service
H score10
First: 08.06.2026 17:00
Last: 08.06.2026 17:00
Sources 1
About this happening:
OpenAI rolled out **Lockdown Mode** and **Active Sessions** in **ChatGPT**, adding controls that reduce **prompt-injection data exfiltration** risk and improve **signed-in session...
OpenAI rolls out ChatGPT Lockdown Mode and Active Sessions for prompt-injection defense and sign-in auditing
Security Tool/ServiceAbout this happening: OpenAI rolled out **Lockdown Mode** and **Active Sessions** in **ChatGPT**, adding controls that reduce **prompt-injection data exfiltration** risk and improve **signed-in session...
ICO releases five-step AI cyber guidance
Public Sector Action
H score18
First: 14.05.2026 12:00
Last: 14.05.2026 12:00
Sources 1
About this happening:
The **UK Information Commissioner’s Office (ICO)** released a **five-step guide** urging organizations to prepare for **AI-powered cyber threats**, making it clear that stronger r...
ICO releases five-step AI cyber guidance
Public Sector ActionAbout this happening: The **UK Information Commissioner’s Office (ICO)** released a **five-step guide** urging organizations to prepare for **AI-powered cyber threats**, making it clear that stronger r...
UK Cyber Resilience Pledge pushes board-level security and supply-chain hardening
Defensive Guidance
H score33
First: 13.05.2026 12:05
Last: 13.05.2026 12:05
Sources 1
About this happening:
The **UK government's Cyber Resilience Pledge** will launch later this year, giving organizations a concrete set of steps to strengthen defenses and reduce supply-chain risk. It a...
UK Cyber Resilience Pledge pushes board-level security and supply-chain hardening
Defensive GuidanceAbout this happening: The **UK government's Cyber Resilience Pledge** will launch later this year, giving organizations a concrete set of steps to strengthen defenses and reduce supply-chain risk. It a...
UK government cyber resilience funding and pledge
Public Sector Action
H score25
First: 22.04.2026 17:10
Last: 22.04.2026 17:10
Sources 1
About this happening:
**UK government** announced **£90m ($120m)** in cybersecurity funding and a new **Cyber Resilience Pledge**, aiming to strengthen **national cyber resilience**. The initiative was...
UK government cyber resilience funding and pledge
Public Sector ActionAbout this happening: **UK government** announced **£90m ($120m)** in cybersecurity funding and a new **Cyber Resilience Pledge**, aiming to strengthen **national cyber resilience**. The initiative was...
NCSC-led NHS cyber resilience program
Public Sector Action
H score47
First: 20.04.2026 12:30
Last: 20.04.2026 12:30
Sources 1
About this happening:
The **UK National Cyber Security Centre (NCSC)** has outlined an **ongoing cyber resilience plan** for the **National Health Service (NHS)**, with the effort aimed at reducing ris...
NCSC-led NHS cyber resilience program
Public Sector ActionAbout this happening: The **UK National Cyber Security Centre (NCSC)** has outlined an **ongoing cyber resilience plan** for the **National Health Service (NHS)**, with the effort aimed at reducing ris...
Timeline
-
23.04.2026 11:45 2 articles · 2mo ago
NCSC backs passkeys for consumer login
Industry Or Public Sector UpdateThe UK’s National Cyber Security Centre says passkeys should now be consumers’ first choice of login and no longer recommends passwords except where passkeys are unavailable on a digital service. The guidance also tells businesses to use single sign on (SSO) wherever possible, reflecting broader progress across the passkey ecosystem and reported use within the National Health Service (NHS).
Show sources
- NCSC Backs Passkeys, Hailing a New Era of Sign-in — www.infosecurity-magazine.com — 23.04.2026 11:45
- NCSC Backs Passkeys, Hailing a New Era of Sign-in — www.infosecurity-magazine.com — 23.04.2026 11:45