Before Development

This chapter describes information for the specific implementation of passkey authentication into applications using the YubiOn FIDO2 Server Service, but we recommend that you establish a strategy and policy for passkey implementation before development.

• Agreement within the company and team
  • Confirmation of business goals to be achieved by introducing passkeys (improved security, increased customer satisfaction, increased revenue, etc.)
• Formulation of implementation policy for ID management and authentication
  • Establishment of implementation specifications for passkey registration, authentication, and management functions within the application’s usage flow
  • Consideration of supported environments (browser, OS, passkey type, etc.) and confirmation that there are no discrepancies with the actual user environment
  • When introducing to an existing application, formulation of a migration strategy from the existing authentication method

These are just a few examples, but as with the functional development of a normal application, it is necessary to plan sufficiently before implementation.