According to the U.S. Cybersecurity and Infrastructure Security Agency (CISA), passkeys are poised to become the “gold standard” of authentication for the internet — replacing passwords and legacy 2FA such as OTP over SMS that lack security, usability and cost-effectiveness.
While passkeys are an open standard, that alone does not make a website or app automatically provide them. In fact, significant steps are required to add passkeys to a website or app.
When considering a passkey implementation, organizations face the choice between developing a solution themselves (“build”) or purchasing a ready-made, off-the-shelf solution (“buy”).
This whitepaper outlines the key requirements for implementing passkeys and explores the advantages and disadvantages of both approaches, providing digital businesses with the ability to make an informed decision regarding the best option for their business.