Miscellany

Once the server is set up, we need to get entitlements working on the client end.

Read more

In this posting, we’ll discuss the server setup for the demo app.

The passkey is used in two places: Registration (creating an account), and logging in. After login, the server works in the same way that most of these types of things work.

Read more

Logging in is simpler, but we still have the challenge/response process, as we did with creation.

With logging in, the client doesn’t need the server to prepare to create a new account, so it just needs a challenge.

Read more

Logging into a server, using an existing PassKey, is a lot simpler than creating a new account and PassKey.

Read more

In our code walkthrough, we’ll look at both the client code (Swift), and the server code (PHP).

The creation process is the most code-intensive part of using PassKeys.

Read more

In order to use a PassKey, the client needs to create the key, and coordinate with the server.

We should note that this is a VERY BASIC EXAMPLE. It’s quite possible to get a lot more involved, and a lot more secure.

Read more

This series will focus on demonstrating a simple client (iOS) and server (PHP/MySQL) implementation of the most basic type of PassKey. This app has already been written, so we’ll look at it, and walk through its operation, in order to learn about implementing PassKeys in an iOS app.

Our guide through this journey, will be a very basic, one-screen iOS app that will act as a UX to a simple CRUD server.

Read more

Security has always been a difficult balance between usability and safety. PassKeys are a way to “bridge” these seemingly opposed concepts. They allow enhanced security between a server and a client, while also removing the need for the end-user to manage login details. The connection is more secure than that provided by the classic “User ID/Login” model, yet there is no need for the user to worry about the details.

Read more