A recap of Google I/O 2026 covering modern web authentication techniques. Key topics include using identity federation (FedCM API) as the primary account creation method, the emerging Email Verification Protocol (EVP) for frictionless email verification, the Digital Credentials API for privacy-preserving attribute verification, and passkey implementation strategies including Immediate UI Mode, passkey form autofill, and automatic passkey creation via Conditional Create. Also covers cross-platform credential sharing with Digital Asset Links and Related Origin Requests, passkey management pages, resilient account recovery, and Device Bound Session Credentials (DBSC) for session hijacking protection. Real-world examples include pixiv achieving 99% login success rate and adidas seeing 8% uplift in passkey creations.
Table of contents
Quick accessWhy modernization mattersStreamline account creationFrictionless attribute verificationImplement passkeys for seamless sign-inStrategic passkey adoptionPasskey management and resilient recoveryProtecting sessions with DBSCPasskeys agent skillsReady to build the future of authentication?Sort: