The UK government is set to introduce passkey technology for its digital services later this year, replacing the current SMS-based verification system. This move, announced at CYBERUK, aims to enhance security and reduce costs, potentially saving millions of pounds annually.
Passkeys are unique digital keys tied to specific devices like phones or laptops, offering a safer, phishing-resistant login process. Instead of requiring an SMS code or password, the device automatically authenticates the user. This approach is more secure because the passkey remains stored on the device, reducing the risk of interception.
The National Cyber Security Centre (NCSC) considers this adoption crucial for strengthening national cyber resilience. The UK is already leading internationally, with the NHS being one of the first to implement passkeys. Beyond security, passkeys also provide a faster login experience, saving approximately one minute per login compared to traditional methods.
“This shift will improve access to essential services, save time, and reduce phishing and fraud risks,” said Feryal Clark, AI and digital government minister.
Additionally, the NCSC has joined the FIDO Alliance, a global body shaping password-free authentication, ensuring the UK plays an active role in developing passkey standards.
This adoption of passkey technology marks a significant step forward in securing UK government services while improving user experience and operational efficiency.
