In this article, we will cover some of the characteristics of FIDO2 WebAuthn, which give it an edge over other authenticators (factors). We will also dive into the usage and growth of WebAuthn from Okta’s perspective, along with some of the challenges we are trying to solve for customers here at Okta. WebAuthn (Web Authentication) is one of the core components of FIDO2 specification, which, along with Client to Authenticator Protocol (CTAP), provides means for phishing-resistant authentication using public key cryptography. Almost all the major browsers and platforms support WebAuthn. Lately, we have seen how most of the conventional factors for multi-factor authentication (MFA) like SMS, push, and passwords have been targeted for phishing attacks and have resulted in account takeovers, monetary losses, and damage to the organization's credibility. FIDO2 WebAuthn stands out among the group of authenticators for being one of the phishing-resistant authenticators. It also provides ease of.