Book a discovery call
Passkeys are a modern authentication method backed by Apple, Google, and Microsoft. They replace traditional passwords with biometric verification (such as Face ID, fingerprint, or a device PIN), making login faster, easier, and more secure.
Passkeys represent an industry-standard upgrade in login security. Unlike traditional biometrics in apps, Passkeys use public-key cryptography, the private key stays on your device, and only the public key is shared with the server.
Passkeys will be familiar to many of your clients as they are already used by Adobe, Amazon, Apple iCloud, Ebay, Google, LinkedIn, Microsoft, PayPal, Uber, WhatsApp and X (Twitter) and many other app providers.
We appreciate that clients logging on using biometric security on their smartphone won’t necessarily understand what’s better but one of Passkeys advantages is that you can use your smartphone biometrics to login on your desktop. This removes the need to remember and type the username and password, which can be monitored through malware.
Passkeys are designed to improve security across all devices and stop unauthorised logins. We would strongly recommend you encourage all your clients to use them as they are a much better and more secure alternative to multi- factor authentication which can be frustrating for clients to use and is not as secure or consistent across devices.
We appreciate that the change will cause a bit of upheaval and for that we apologise but hope you’ll understand that we want your data to be as secure as possible and this is the best approach to security. We have outlined below the benefits of Passkeys over the existing biometric and MFA login functionality.
As a next step we would encourage you to download our communication template guide that can be rolled out to your clients to explain passkeys.
We have created this template as a document you can download and brand here.
With this update, the existing PIN code and biometric logins currently set up by users within your branded app (both iOS and Android versions) will be replaced by Passkeys. As an addition to the update to the app, you can enable Passkeys to be used on desktop too which is a significant improvement to the desktop experience.
Once the update is live:
This change means the login experience will be different immediately following the update. It’s important that users know their current username and password, otherwise they will be unable to access their account if they only know their pin code or rely on the previous version of biometric login.
To ensure a smooth transition for your clients, we strongly recommend you:
Watch the webinar recording to understand the changes, what to expect, and to answer any questions you may have about how this will affect your app and your clients.
Alongside the app update, we have been working to improve our internal processes on how we deploy your branded apps to you.
As part of this process, we will be adding an additional user to your Apple Developer account under the email addresses below. This will mean there will be a total of three moneyinfo accounts used to manage your app:
Please be aware that these emails are not a point of contact for moneyinfo, and any queries should be directed to our support team.
Will clients need to register for a Passkey on every device they use?
Yes, Passkeys are device-specific. If a client uses more than one device, they’ll need to register a Passkey on each.
Can the same Passkey be used on all a client’s devices? Not exactly. The Passkey itself is stored securely on each device, but the method of authentication (e.g. Face ID or fingerprint) can remain consistent across devices. Clients will need to set it up separately on each device but can use the same biometric method. This means that your client can use their smartphone’s biometric security (face or fingerprint) across all their devices and ensures a consistent experience and security across their devices.
Can multiple clients set up Passkeys on a shared device?
Yes, multiple Passkeys can be created on a single device, so each client can have their own login credentials.
If a client’s phone is stolen, can the Passkey be blocked?
Yes, clients can delete their Passkey themselves from the Accounts page in the app. If additional support is needed, your firm can contact moneyinfo support for help.
If a client doesn’t want to set up a Passkey, can they stop being asked?
Yes, if a client selects “Set up later” on first prompt, they won’t be asked again automatically. They can still enable Passkeys at any time from the Accounts page.
Can firms remove Passkeys for their clients?
Yes, this can be done at company level, but moneyinfo will need to action this internally. Clients can also delete their own Passkey from within the app.However, we would strongly recommend that you encourage your clients to use Passkeys. They are more secure than existing multi-factor authentication and very easy to use, once your client has set them up on their devices.
Will the Passkey login appear under my firm’s branding or moneyinfo’s?
It will appear under your firm’s branding. Any use of moneyinfo branding seen during demos is purely for demonstration purposes.
Will this also apply to Moneyinfo Manager (MIM)?
Yes, the update will be rolled out to the MIM desktop app once development is complete.
Do you have a one-page guide we can send to clients ahead of launch?
Yes, we already have guidance prepared. This is currently being reviewed and will be distributed before the update goes live.
How will we know when Passkeys will be implemented?
We will communicate with you when you can expect the update to take place. Please look out for an email from us.
If you have any questions, please feel free to contact our support team at support@moneyinfo.com
We appreciate your support in preparing clients for this change and look forward to helping you deliver an improved login experience.
