Android apps are about to get better built-in passkey support. Google announced in a developer blog post last week that Credential Manager, a new Android-specific API for storing credentials like username and password combinations and passkeys, is going public on November 1st. Credential Manager, which has been in developer preview for months, houses biometric authentication of passkeys, traditional passwords, and federated identity login under one roof in Android phones.
Android 14 will make it easier for apps to support passkeys soon
Google’s Credential Manager API rollout should encourage more Android apps to support passwordless login with passkeys.
Google’s Credential Manager API rollout should encourage more Android apps to support passwordless login with passkeys.
Illustration by Alex Castro / The Verge
is a former weekend editor who covered tech and entertainment. He has written news, reviews, and more as a tech journalist since 2020.
Ultimately, the change should allow apps to offer better authentication support in Android 14. Using Credential Manager, apps can offer users easy biometric logins through passkeys. That should mean a more friction-free sign-in experience since people who use that method wouldn’t have to worry about keeping login information in their heads. Third-party password managers like 1Password can also integrate the API for a more streamlined experience when defaulting to such an alternative instead of Google Password Manager.
Google explained why it’s pushing for passkeys in Android at Google I/O this year.
Google wrote in another blog post last week that it’s deprecating several authentication APIs so that developers will only have to call on the Credential Manager for authenticating users. Hopefully, that should make it much simpler and, therefore, much more likely to be used by third-party apps, as others, like WhatsApp and Uber, have already done.
What are passkeys?
Passkeys can replace traditional passwords with your device’s own authentication methods. That way, you can sign in to Gmail, PayPal, or iCloud just by activating Face ID on your iPhone, your Android phone’s fingerprint sensor, or with Windows Hello on a PC.
Built on WebAuthn (or Web Authentication) tech, two different keys are generated when you create a passkey: one stored by the website or service where your account is and a private key stored on the device you use to verify your identity.
Of course, if passkeys are stored on your device, what happens if it gets broken or lost? Since passkeys work across multiple devices, you may have a backup available. Many services that support passkeys will also reauthenticate to your phone number or email address or to a hardware security key, if you have one.
Apple’s and Google’s password vaults already support passkeys, and so do password managers like 1Password and Dashlane. 1Password has also created an online directory listing services that allow users to sign in using a passkey.
Follow topics and authors from this story to see more like this in your personalized homepage feed and to receive email updates.
Jess Weatherbed
Jess Weatherbed
Richard Lawler
Most Popular
Most Popular
- European retailers yank popular headphones after study reports trace amounts of hormone-disrupting chemicals
- Meta is reportedly laying off up to 20 percent of its staff
- Gemini’s task automation is here and it’s wild
- MacBook Air M5 review: a small update for the ‘just right’ Mac
- PC makers are not ready for the MacBook Neo
