CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

UK NCSC endorses passkeys as primary consumer authentication method

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

The UK National Cyber Security Centre (NCSC) has officially designated passkeys as the preferred consumer authentication method, urging adoption by businesses and the public. Previously reserved for scenarios where passkeys are unavailable, passwords are now deprecated as a primary login option. The endorsement follows a year-long collaboration with the FIDO Alliance and observed success in deployments such as the NHS. The move aims to reduce reliance on passwords by promoting passkeys, which leverage FIDO2 and WebAuthn standards for phishing-resistant, biometric, or device-based authentication. The UK government has also committed to rolling out passkeys across all public digital services.

Timeline

  1. 23.04.2026 11:45 1 articles · 3h ago

    NCSC officially endorses passkeys as default consumer authentication method

    UK National Cyber Security Centre retracts password-first recommendations in favor of passkeys as the primary login method for consumers and businesses. The endorsement follows a year of ecosystem collaboration and observed success in deployments such as the NHS. Passkeys are promoted as phishing-resistant and user-friendly, leveraging FIDO2 and WebAuthn standards. Additional business guidance is expected from the NCSC.

    Show sources
    Open in new tab

Information Snippets

  • The NCSC now recommends passkeys as the first-choice consumer login method, deprecating passwords unless passkeys are unavailable on a service.

    First reported: 23.04.2026 11:45
    1 source, 1 article
    Show sources

  • The NCSC collaborated with the FIDO Alliance over the past 12 months to evaluate passkey ecosystem progress and address prior inconsistencies.

    First reported: 23.04.2026 11:45
    1 source, 1 article
    Show sources

  • Passkeys are positioned as more secure and user-friendly than passwords, using FIDO2 and WebAuthn standards for authentication via biometrics, security keys, or device-based methods.

    First reported: 23.04.2026 11:45
    1 source, 1 article
    Show sources

  • The NCSC observed successful passkey adoption in the NHS and expects to publish additional guidance for businesses on authentication methods in the future.

    First reported: 23.04.2026 11:45
    1 source, 1 article
    Show sources

  • The UK government announced plans in 2025 to implement passkeys across all public digital services.

    First reported: 23.04.2026 11:45
    1 source, 1 article
    Show sources