Passkeys WebAuthn Standards

Passkeys are a passwordless authentication method using cryptography and WebAuthn/FIDO2 standards. Instead of username + password, user signs up with face/fingerprint/PIN on their device. Device generates public/private key pair. Public key sent to server. Later, login involves device cryptographically signing a challenge from server. Server verifies signature with public key. User is authenticated. No password ever stored or transmitted. Advantages: phishing-resistant (no password to steal), breach-proof (private key never leaves device), passwordless (no fatigue), fast (biometric login ~2 sec).