- Government plans to phase out SMS logins in favor of secure passkey solutions
- Passkeys enhance security while reducing login times and operational costs
- UK joins the FIDO Alliance to lead in secure authentication innovation
The UK government has announced an ambitious plan to implement passkey technology across its digital services starting in 2025. This transition aims to replace SMS-based verification methods with a more secure and user-friendly alternative.
Passkeys serve as unique digital identifiers linked to individual devices, enabling users to authenticate their identities without relying on traditional passwords or one-time text codes.
Because passkeys remain on the device, they cannot be reused across different platforms, significantly enhancing resistance against phishing attacks and other prevalent security threats.
Bolstering Cyber Resilience
The National Cyber Security Centre (NCSC) of the UK has emphasized that adopting passkeys will significantly enhance the nation’s cyber resilience.
According to NCSC Chief Technical Officer Ollie Whitehouse, “The NCSC’s goal is to push the UK past reliance on passwords in favor of passkeys, which provide robust protection against common cyber threats, including phishing and credential stuffing.”
“By implementing this passkey technology, the government sets a benchmark for security improvements while simultaneously facilitating easier and quicker access for citizens.”
This switch could also lead to annual savings in the millions by eliminating costs associated with SMS and reducing the average time users spend logging in.
AI and Digital Government Minister Feryal Clark stated, “Replacing outdated methods like SMS verification with modern passkeys will streamline access to crucial services for everyone.”
The NCSC has also become a member of the FIDO Alliance, an international organization dedicated to the development of passwordless login standards.
Andrew Shikiar, Executive Director and CEO of the FIDO Alliance, remarked, “The UK government’s embrace of passkeys for its digital services is a transformative move, safeguarding citizens while enhancing government security and operational effectiveness.”
Though not without their challenges—such as recovery methods, device synchronization, and varying platform adoption—the government sees passkeys as a pivotal element of digital identity moving forward. The NCSC is currently collaborating with vendors and international organizations to tackle these issues and expedite the adoption of passkeys.
