WebAuthn
Web Authentication
A system for logging in securely without a password, using a device's authentication features or cryptographic keys.
In Simple Terms
WebAuthn is a system that lets you log in to websites using your fingerprint, face recognition, a PIN, or a security key instead of a password. It uses the authentication features built into your smartphone or computer, or a dedicated security key, to verify you securely without ever entering a password. Your browser and these devices exchange information securely behind the scenes, which protects you from the risk of having your password stolen. It's already used by many websites and browsers today.
Behind the Name
WebAuthn combines "Web" with "Authn," a common shorthand for "Authentication" — so the name literally means "web authentication."
Take a Closer Look!
WebAuthn is a standardized way to log in to websites securely in your browser without a password, using biometrics (fingerprint or face) or a dedicated security key instead.
It's defined as a secure authentication technology designed to eliminate the risk of password leaks at the root.
In the past, you had to create and remember a different password for every website.
Put simply, WebAuthn lets you log in quickly using the biometric features on your smartphone or computer, or an external physical key.
What makes this system stand out is how secure it is.
Your fingerprint, face, or security key data stays stored only on your own device — it's never sent to the website's server.
Only data secured using public-key cryptography passes between your device and the server, so even if a website's data were ever leaked, there's no risk of your account being taken over.