Passkeys - also called Security Keys - (using the WebAuthn and FIDO2 standards) provide a very secure way to authenticate yourself with MyRapidi as a physical device like a Yubikey or fingerprint scanner is used during the authentication.
This avoids practically all possibilities of account takeover and is more secure than using passwords in combination with 2FA.
The standards used for these security keys (called WebAuthn and FIDO2) are relatively new but are supported by industry leaders like Google and Microsoft and built into recent browser versions of Google Chrome, Microsoft Edge, Firefox (Windows 10+) and Safari among others.
Many industry leaders already support the use of PassKeys for their different online services. For example, you find PassKeys support in Google Gmail, Microsoft Azure Active Directory, and Salesforce.com among others.
A security key or device can be set up in two different ways with MyRapidi - either as Passwordless (no password is needed at login) or as a Second Factor (like the Google 2FA but more secure as it is a hardware key).
Passwordless authentication combines the use of a physical device (which has some unique key and the ability to securely authenticate with a service) and then some personal knowledge like a PIN code or a personal feature like a fingerprint.
So as passwords can be stolen or guessed (and used remotely), it is much harder for someone to get hold of both the piece of hardware and the personal knowledge or feature (PIN code or fingerprint).
Even strong passwords used in combination with 2FA codes (like what we support with the Google Authenticator app) are less secure than using passwordless login. Hackers could steal your mobile phone number remotely and get access to your email account and then reset your password and get into your account. With passwordless login enabled (and PassKeys enforced), they will always need the physical hardware key also.
So how do you enable Passkeys for your login?
You need the following items to use PassKeys with MyRapidi:
To set up a PassKey with MyRapidi:
We recommend that you add at least two different Passkeys so that you have a Passkey that you normally use and a backup Passkey.
If you do not check the box "Passwordless" the key will instead be used as a secure Second Factor device. In this case, you still have to enter your password, and you then have a more secure second-factor authentication that MyRapidi will ask for after the password is entered.
After you have registered your passkey it will appear in your list of passkeys.
Finally, in the action column you can edit the name of your passkey or delete it.
If you are the account administrator for your company's MyRapidi account, you can enforce the use of Passkeys for one or more users in your MyRapidi account. You do that from the Manage Users page. We recommend that you enforce the use of Passkeys for both all account administrators and all users that have the rights to edit the configuration (Transfers, Connections, etc.).