Introducing passwordless authentication on GitHub.com

GitHub is enhancing account security by introducing passkey authentication, a move aimed at reducing reliance on passwords, which are the root cause of over 80% of data breaches. Passkeys offer a secure, privacy-preserving, and user-friendly method for protecting accounts, building on traditional security keys by providing easier configuration and enhanced recoverability. Unlike traditional methods like SMS and email, passkeys are unique to each website, preventing user tracking across different sites and aligning with the vision of passwordless authentication. Users can enable passkeys through GitHub's 'Feature Preview' settings, allowing for seamless registration and upgrading of existing security keys. Passkeys support cross-device authentication, letting users sign in on desktops using a passkey on a phone or tablet, and they can be synced across devices depending on the provider, ensuring continued access even if a device is lost. This initiative reflects GitHub's commitment to improving security without compromising user experience, and it invites user feedback to further refine the system.