A platform authenticator is an authenticator built into a device or operating system rather than carried as a separate external token. It matters because strong authentication becomes easier to adopt when secure authenticators are already built into common devices.
What is Platform Authenticator?
Examples include built-in biometric or secure-element-backed authenticators on phones, laptops, and tablets. Platform authenticators are central to many passkey and FIDO2 experiences because they can provide strong cryptographic proof with relatively low user friction.
What Platform Authenticator Commonly Supports
Common uses include passkeys, passwordless login, phishing-resistant MFA, device-bound authentication, and easier deployment of strong authentication at scale.
Platform Authenticator vs. Roaming Authenticator
A platform authenticator is built into one device. A roaming authenticator is typically an external device that can move between systems.
Frequently Asked Questions
Why are platform authenticators useful?
Because they bring strong authentication closer to everyday user devices without requiring separate hardware for every login.
Are platform authenticators always enough for every risk level?
Not always. Some high-risk environments still prefer dedicated hardware or layered controls.
Related Cybersecurity Terms
