PKAuth is a secure and simple alternative to passwords. Instead of creating and memorizing a distinct password for each website, users simply list their approved devices. Users login faster since they no longer need to type out or reset their passwords. PKAuth also protects users from various cyberattacks, including phishing and dictionary attacks.
Interested in protecting your organization? Let us know how we can help!
PKAuth leverages public key cryptography to securely authenticate users. At a high level, users generate a unique public key for each of their devices. They then use a master public key to digitally sign the list of all their approved public keys. When users want to log into a website, they answer a challenge-response using any of their device's public keys. PKAuth's software infrastructure makes all this simple for users, and users are in complete control of their online identities. Check out the protocol specification for more technical details.