Descope, a drag-and-drop authentication platform for developers, announces product additions that enable developers to add passkeys to their existing applications. By adding Descope as an OpenID Connect (OIDC) agent, customers using Amazon Cognito, Auth0 and other identity providers that support federated identity now can add passkeys – as well as other passwordless methods – to their authentication flows with a few minutes of setup.
Passwords are bad for security and usability since they are easy for attackers to brute force but hard for users to remember. More than 80 percent of web application attacks in 2021 were due to stolen credentials according to the Verizon DBIR report.
The rise of passkeys spells the beginning of the end for passwords. By enabling users to sign in to accounts the same way they unlock their devices (with a fingerprint, face scan, or PINs), passkeys elevate the user experience while removing all the security concerns that passwords bring.
However, adding passkeys to an existing authentication flow can be a complex process.
Descope helps developers add passwordless authentication capabilities to their apps with a few lines of code. Descope’s drag-and-drop workflows, SDKs, and APIs abstract away the complexity of authentication so that apps can get to market faster and safer than before.
Customers can add Descope as an OpenID Connect (OIDC) agent to their identity providers that support federated identity. This enables the addition of passkeys – and other passwordless methods such as magic links, social logins, and OTPs – without any complex configuration changes or code additions. This helps customers:
- Improve the user experience by providing an easier onboarding path and merging accounts across authentication methods.
- Increase retention by simplifying return logins and avoiding churn due to forgotten passwords.
- Enhance security by easily adding multi-factor authentication to existing auth flows.
