Usernames and passwords are easily stolen. From phishing attacks to network intrusions, your login info will always remain vulnerable.
Knowing your login and trying to keep it safe isn’t enough, so we devised a system where your primary login is something you have.
Instead of proving your identity with a username and password, you use your PassKey—an authentication device that only you possess. This password-less system prevents revealing data to anyone, which defends against common hacking attempts.
We use well-established encryption algorithms and cryptographic protocols which are industry-standard and have no reported vulnerabilities. WWPass utilizes RSA-4096 for Service Provider certificates and AES-128/3DES for PassKey authentication. For PassHub, we use AES-256 for symmetric and RSA-2048 for asymmetric cryptography.
A PassKey is our physical security device that comes in the form of a USB token or Smart Card. It works as a cryptographic microcomputer that replaces usernames and passwords to log you in faster and more securely.
When you navigate to an enabled website or service, the screen will display [Log in with PassKey]. If the PassKey is connected, authentication just requires one button tap.
With WWPass PassKey, you can log you into any of these WWPass-enabled services—never rely on usernames or passwords again. Log into PassHub, which makes signing into your password-based accounts faster and far more secure.
WWPass can integrate our authentication system with any web service you need. Get in touch with our team!
Service Keys can be deactivated and reactivated with another Service Key. Two Service Keys come standard with each set as backup options. Losing all of your Service Keys means you won't be able to manage your PassKey.
You can authenticate quickly and securely on any WWPass-enabled website or application without a username or password. Instead of a password form field, the login screen presents the WWPass QR code which you scan with your PassKey Lite smartphone app.
When you need to login just on your smartphone, tap the QR code to activate the PassKey Lite and it will automatically activate!
No, a computer is not required. You only need access to the email address you provide during activation and your smartphone.
Currently, PassKey Lite is limited to one key per device. They cannot be used interchangeably or duplicated to another smartphone.
Your PIN provides a solid additional authentication factor, like a debit card. PassKey Lite itself utilizes multiple authentication factors by design. And when you lock your smartphone, it becomes far more scure than a password alone.
Developers can add the QR code to their website or service in a few simple steps. Instructions are available here.
Don't hesitate to contact us for information or support!
Restoring your PassKey Lite is as simple as installing the app on your new phone and running the Recovery option. Instructions are available here.
We recommend setting up recovery in the event of a lost PassKey Lite if you haven’t already. Recovery setup can be done anytime through the in-app settings. PassKey Lite information on the old device will automatically deactivate.
Setting a PIN is crucial to securing your PassKey Lite, and it cannot be reset. PINs are required as a secondary authentication factor and for associating your PassKey Lite to your device.
You can create a new PassKey Lite, but you won’t have access to any data and information stored with your previous PassKey Lite.
Check your junk mail or spam folder. The sender should be firstname.lastname@example.org. Also, verify that the email address you provided is the correct email address. If this does not help, please contact us.
Most online services will still require passwords. For your password-based accounts, keep them in PassHub: WWPass’s free password manager. Your login info is kept in secure directories called vaults, which are accessible only through PassKey or PassKey Lite.
PassHub’s authentication system counters data breaches or leaks because it’s secured with PassKey, not another password. Also:
No, your passwords are only accessible to you or the users you authorize. We want to maximize everyone's security, so PassKey is the only way to read data within PassHub.
Yes! You can share your vaults with anyone who has a PassKey or PassKey Lite and access can be granted or revoked at any time.
Select “Share” from the vault drop down menu to generate a sharing code. Sending this code to employees will allow them access to your vault after a few easy steps and final confirmation from you.
Yes, PassKey or PassKey Lite is the only way to authorize PassHub vault access. This feature minimizes the overall exposure of your login info, making it one of the most secure methods of accessing accounts.
We provide PassHub for free on our network, but we understand if you want to take extra security precautions. PassHub is open source, and you may host it wherever you like.
Check back soon for more info!
It depends on how many users you need to register and the type of devices you wish to integrate, but you can be up and running in less than a day.