\n
![](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEggAgZpSGE0_9eSno9KgAMEfUr5rOevzNtP_iHFQ1cl83SruPKIv0j1mNgvmphzUZrXftZ7KKMTgJmBiRfjp5wSWEnDLgtCen10WUvuU4hT1pC-an3QIppvtCSbJR2zouDk2j7CVEhMYF1SvNjnVHaWwVUTUD0qk_-wloQFLgZLwYNnOVeNvs2dAROTPBA\/s1600\/credential-manager-meta%20%281%29.png\")
<\/p>\nPosted by Niharika Arora (X<\/a> and LinkedIn<\/a>) \u2013 Senior Developer Relations Engineer and Vinisha Athwani – Technical Writer (LinkedIn<\/a>)<\/em><\/p>\n In a world where digital security is becoming increasingly critical, passwords have become a notorious weak link \u2013 they’re cumbersome, often insecure, and a source of frustration for users and developers. But there’s good news: passkeys<\/a> are gaining popularity as the most user-friendly, phishing-resistant, and secure authentication mechanism available. For Android developers, the Credential Manager API<\/a> helps you guide your users towards using passkeys while ensuring continued support for traditional sign-in mechanisms, such as passwords.<\/p>\n In this blog, we discuss some of the best practices you should follow while encouraging users to transition to passkeys.<\/p>\n Before diving into the recommendations for encouraging the transition to passkeys, here\u2019s an overview of the fundamentals of authentication with passkeys:<\/p>\n There are several tangible benefits that users experience in apps that allow them to use passkeys to sign in. The highlights of using passkey for users are as follows:<\/p>\n Underscoring the improved experience with passkeys, we heard from several prominent apps. X<\/b> observed that login rates improved 2x after adding passkeys to their authentication flows<\/a>. KAYAK<\/b>, a travel search engine, observed that the average time it takes their users to sign up and sign in reduced by 50%<\/a> after they incorporated passkeys into their authentication flows. Zoho<\/b>, a comprehensive cloud-based software suite focused on security and seamless experiences, achieved 6x faster logins by adopting passkeys<\/a> in their OneAuth Android app.<\/p>\n When you migrate your app to use passkeys, you\u2019ll be leveraging the Credential Manager API which is the recommended<\/b> standard for identity and authentication on Android.<\/p>\n Apart from passkeys, the Credential Manager API supports traditional sign-in mechanisms, simplifying the development and maintenance of your authentication flows!<\/p>\n For all of these sign-in mechanisms, Credential Manager offers an integrated bottom-sheet UI, saving you development efforts while offering users a consistent experience.<\/p>\n Now that we\u2019ve established the benefits of passkeys, let\u2019s discuss how you should encourage your users to migrate to passkeys.<\/p>\n The following are a list of UX flows in which you can promote passkeys:<\/p>\n Encouraging users to transition from passwords to passkeys requires a clear strategy. A few recommended best practices are as follows:<\/p>\n <\/p>\n Real-world developer experiences often highlight how small design choices\u2014like when and where to surface a passkey prompt\u2014can significantly influence adoption and user trust. To see this in action, let\u2019s explore how top apps have strategically surfaced passkey prompts at key moments in their apps to drive stronger adoption :<\/p>\n To accelerate passkeys adoption, Uber<\/a> is proactively promoting passkeys in various user journeys, alongside marketing strategies.<\/p>\n Uber has shared : “90+% of passkey enrollments come from promoting passkey creation at key moments inside the app as compared to onboarding and authentication CUJs<\/b>“, underscoring the effectiveness of their proactive strategy.<\/em><\/p>\n Here\u2019s what Uber has to say:<\/b><\/p>\n Economic Times<\/a>, part of the Times Internet ecosystem, used a seamless user experience as the primary motivation for users to transition to passkeys<\/b>.<\/p>\n After introducing targeted nudges, Economic Times observed ~10%<\/b> improvements in passkey creation completion rate within the initial rollout period. <\/em><\/p>\n Key learnings and strategies from their implementation:<\/b><\/p>\n Integrating passkeys with Android’s Credential Manager isn’t just about adopting new technology; it’s about building a fundamentally more secure, convenient, and delightful experience for your users. By focusing on intelligent passkey introduction, you’re not just securing accounts\u2013you’re building trust and future-proofing your application’s authentication strategy.<\/p>\n To provide your users the best, optimized and seamless experience, follow the UX guidelines<\/a> while implementing passkeys authentication with Credential Manager<\/a>. Check out the docs today!<\/p>\n<\/div>\n![](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgrvOeAJc1y1bh78bUAk20alDyAvhMrpkuJ0MDKBHdv5kSbXGpvLhyphenhyphenae-b-s7Ao287HooSPVNtHovtYT4VhMhZjthJLC7qcwZirUna0QAXQvZSMO1b6ZzgfyCcsQRW-K7hMNLQKBSxbQvJMGFBUHAIhKIcR7i3_Cua2BNd-NYwkXF81nCSFyvGvxAC8Z_A\/s1600\/Android_Evergreen_Hero_Banner_Safety_and_Security_OptionB.png\"\/)
<\/a><\/p>\nUnderstand authentication with passkeys<\/span><\/h2>\n
\n
\n
How do passkeys help your users?<\/span><\/h2>\n
\n
\n
What\u2019s in it for you?<\/span><\/h2>\n
When should you prompt users to use passkeys?<\/span><\/h2>\n
\n
\n
![\"introduce](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjB1lH9ebLJklYFJMaqxIplDxo5UfqtJpS9Ep79_3yLu78c58Zcp7BkdbK25r8gp5vUYRxEg-7HRaoOcMlWMEJCQs_nk3fYg7Tsj51yIDjqIV9lCDtA1rfy2Lof5X0Ou1rkedhy132535CZUDxMk4lDIHY0obMryYNdAvvO2pWj_Gb_MQMUwqChWJkyxYs\/s1600\/image7.png\")
<\/div>\n![\"encourage](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjIvjXfXC6szIN6Jmr0sPpESqJk_9qHcAQpkNX6lRai1Bhswuuiw9AzoTyJO3jsovQNbuHqtTgnhztejj-F5ueL0Bx2rfNsQKL8bRF7WGSwvr1qeq0cucEbWLmC5c1IHnzK7inx_Tl0mw-bbw46Y7bPzP7PBEr3Sr0Wb0Cw32JIrXsJx4vQCL_R7cuRx5I\/s1600\/passkeys-credential-manager-sign-in.png\")
<\/div>\n![\"encourage](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiC9eSDTKb9sccO-gL1RCE0xoPtHODgO5AbztB8LvWv8_mkqn8YcH-z2kk5aHqcq7khEykdwobTEoatc47v1xJRlvBaz76NIezuyR0ZDOv8Rc-h7GzXbd9VzkeRTCPlSI2MiqXHT35NW_frSJmLTHW4bLkPfcuB3ubZ242fB002fduc844T6Va5-_QtFtg\/s1600\/passkeys-account-recovery.png\")
<\/div>\n![\"encourage](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEi_m-y4kSmiYYno3uYNB46UeQruiwWxyyp3qczN9k3stbqXYFDqbI8aoFzbxEzonQ3mUezjavccJZnQmQNZ9ahiUJLR4fDmiR0VWu36xBDuFTUmubapjZyN3mO_qMslXdDl1XG2oXKU_oj2_nP0SJseFAfgdkVv22LMKW4CyrZ-9H0_x10GgclObQpjZD4\/s1600\/passkeys-new-password-created.png\")
<\/div>\nHow should you encourage the transition to passkeys?<\/span><\/h2>\n
\n
\n
\n
\n
![\"example](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgJQPTAgLEAdw5ioahG68v6MEboHese-Z_6aseVfsVRHUfJKj4W7kk0Dk7DFg9gspOJidH3wrNermDJRwWWQCiJwFmJ1ugQK8J2GOCAlEgcoBsWkKEFwzPiWqwr3vC3g7GS2WiKOuGsBVGcnUfWs-XLp75QzT8px1WiNYwWvMpEeRQOXLSwPLleLdJxVpA\/s1600\/create-passkeys-clear-value-proposition.png\")
<\/div>\n\n
\n
\n
\n
![\"example](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjrkV43fKI6FBxDPBTwdLIrRabLfhuHbzjr9BSlAQEHwWaPiYSY2mHHoOufx3SxRU2WuOrJc0uphB16DQ-KL-A-myqvUbebhLr1t2ZVCS0p-TUh01w8TMUXMJf0ZEk21M0WW5KT8-4JK0BGuBFkahk9emCoL1ojA_ERqwoEqe0UeHZRdnBvDmbDXa7emXw\/s1600\/passkeys-authentication-settings-ui.png\")
<\/div>\n\n
\n
\n
Developer Case Studies<\/span><\/h2>\n
Uber<\/span><\/h3>\n
Key learnings and strategies from their implementation:<\/b><\/span><\/h4>\n
\n
\n
<\/div>\n
\n<\/em><\/center><\/imgcaption><\/image><\/ul>\n<\/ul>\n\n
\n
\n
\n
Economic Times<\/span><\/h3>\n
\n
\n
![\"example](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEj7uf9-hr66rVxrQaf_U4fz9sL2JMcKcq2cXjSk3mIHN48v1d5mFKXTPpIIXuxoBL6chEPvPvz0BCjDgp_FdqFK6uBYOoBkFjfEXmPlWNUpkwiVpZ-1qAZIoOhTSNRFg6VVyA7bDiHLH5sTp3gKxGaCj52VEPIdqg0Vbf1umEG2cqzsb5hsrg0LOXg3LcI\/s1600\/econiomic-times-passkeys-workflow.png\")
<\/div>\nConclusion<\/span><\/h2>\n